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I'm looking at claim 37. There is a very specific layout for cryptographic transmission where two devices 
exchange a message (originator and receiver), where the originator derives a first key from 3 pieces of data: 
a base key (shared), a first data string and data specific to the message (possibly a hash), a second key based 
on 3 things- the shared base key, a second string and the same data specific to the message - where the 
originator hashes the message with the first key to get a signature and encrypts the signature and the message 
with the second key to obtain an "encrypted message" and joins (presumably concatenates) the encrypted 
message" with the data specific to the message (once again, probably a has). 

Specifically, I can't find 

1 having a first and second key, both derived from the specifics of the claim. 

2 hashing the message with the first key and encrypting the hashed message (signature) and the original 
message with the second key (although with art on the key derivation above, I probably could make a 
rejection). Hashing (keyed and non-keyed) is well known, as are messages with attached digital signatures 
(the combination encrypted or in the clear). 

Terms' 

Data specific to the message = hash, digest, signature, fingerprint, checksum, even an ID number 

base key = shared key, private key, local key 

first and second data strings can be just about anything 
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ABSTRACT EP 1251672 Al 

Methods, systems, computer program products and data structures are 
described which allow a client to communicate with a server even though 
multiple proxies that require different authentication data must be 
traversed to allow such communication. In _ operation, the^ client first 
authenticates to a first proxy using authentication data appropriate for 
the first proxy. The client then authenticates' to a second proxy using 
different authentication data that is appropriate for the second proxy. 
This proxy authentication continues through as many proxies as necessary 
until the client is in communication with the server. 
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ABSTRACT EP 1251670 A2 

Methods, systems, and computer program products for negotiating a 
secure end-to-end connection using a proxy server as an intermediary. The 
client first negotiates a secure connection between the client and the 
proxy so that any credentials exchanged will be encrypted. After the 
exchange of authentication credentials, the secure client-proxy 
connection is altered so that no further encryption takes place. The 
client and server then negotiate a secure end-to-end connection through 
the proxy, with the secure end-to-end connection being encapsulated 
within the insecure client-proxy connection. In this way, the overhead of 
creating a separate client-proxy connection for the secure end-to-end 
connection may be avoided, but the insecure client-proxy connection 
introduces only minimal overhead because it no longer encrypts any data 
that it carries. 
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Figure number on first page: 1 
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ABSTRACT EP 1227637 A2 

A mobile gateway receives content from a content source and customizes 
the content using transforms assigned to each mobile client. Transforms 
account for differences between mobile clients without imposing 
significant processing burdens on the content server. Copies of the 
content, the transformed content, and a transform identifier are cached 
at the mobile gateway so that subsequent requests for the content may be 
satisfied without requiring access to the content source. Processing that 
is common among several transforms may be shared. Mobile clients may be 
any type of computer. 
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An external client securely accesses a private corporate network using 
a communications device, but without the communications device being 
required to communicate through the private corporate network when 
communicating with resources external to the private corporate network. 
The external client establishes a connection with the private corporate 
network over the public network such as the Internet using, for example, 
Transmission Control Protocol (TCP). The external client then provides 
security to tne connection by* running, for example,' the Secure Socket 
Layer (SSL) protocol over the TCP protocol. During the ensuing session 
with the private corporate network, the communications device establishes 
a subsequent connection ( s ) with the external resource. 
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ABSTRACT EP 1227396 Al 

Methods, systems, and computer program products for synchronizing data 
(282) s-tored at one or more message clients ..(26€)- with data (220) stored ■ 
at a message server (210) where the message clients may receive update 
notifications (290) and may represent the data using different data 
structures than the message server uses to represent the same data. A 
token (294) is associated with each data change that occurs at the 
message server. The message server sends each change and associated token 
to the message clients. When the message clients request a 
synchronization, the tokens they received are returned to the message 
server for comparison with the tokens the message server sent to the 
message clients. If the message clients do not return a particular token, 
the message server determines that the clients did not receive the 
corresponding change and resends the change to the message clients. 
Tokens may also be used to divide a change into one or more portions, 
with only one portion being provided initially. Then, in response to 
receiving the token associated with the portion, the message server may 
provide the remaining portion of the message to the message clients. 
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An expert proxy server^Jfe described that is coupled to ^^iumber of 

wireless devices through a wireless network, and to a number of server 
computer systems through an external network such as, for example, the 
Internet. The expert proxy server acts as an agent for a wireless device 
by providing a service for the wireless device. Specifically, the expert 
proxy server determines that' a service is to be provided to the wireless 
device. Next, the expert proxy server identifies an application that 
provides the service and then communicates with the identified 
application that provides the service. The expert proxy server compiles 
the results of the communication with the application and then transmits 
the compilation to the wireless device over the wireless network. Thus, 
the relatively smaller bandwidth of the wireless network is preserved by 
transmitting a minimal amount of information over the wireless network 
while leaving more extensive communications to occur over higher 
bandwidth external networks. Also, since the extensive processing occurs 
at the expert proxy server rather than at the wireless device, the 
application on the wireless device may be simplified and smaller as 
compared to the supporting applications on the expert proxy server 
thereby preserving the limited memory and processing capability of the 
wireless device. 
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A flexible gateway accommodates data transfer from a data origination 
device over a wide variety of networks to a wide variety of destination 
devices-, even-if those networks use diff erent • protocols, . and even if -the 
devices recognize different data formats. Thus, the gateway can perform 
work previously requiring numerous gateways. After the gateway receives 
information from a data source, the gateway identifies the specific 
device type and the specific network type to which the information is to 
be routed. The gateway then calls device and network drivers associated 
with the specific device and network identified with the destination 
device. These drivers then manipulate the data using the device driver 
into the format recognized by the destination device, and then provide 
the manipulated data to the destination device over the identified 
network using the compatible protocol. Thus, the destination device 
properly receives and interprets the information provided by the data 
source. If, in the very next moment, data arrives at the gateway that is 
to be routed over a different network using a different protocol to a 
different device recognizing a different device, the gateway will call 
different device and network drivers to enable the communication. 
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The dynamic conversion of a data structure from an origin data format 



into a destination data ^Kmat is described. Instead of ifljRg a single 
data conversion module to accomplish this data conversion, a gateway 
computer system identifies a sequence of format conversion modules that, 
when executed in sequence, converts the data structure from the origin to 
the destination data format. The conversion occurs dynamically during run 
time and reduces the amount of needed data conversion modules 
significantly, particularly when there is a large amount of possible 
origin data formats and destination data formats. This conversion is 
particularly useful when communicating over wireless networks since there 
is little standardization in wireless devices resulting in wireless 
devices having many different proprietary data formats. 
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METHOD AND APPARATUS FOR PERFORMING ERROR CORRECTION BY COMBINING TWO 

INSTANCES OF A MESSAGE 
PROCEDE ET APPAREIL DE CORRECTION D'ERREUR PAR COMBINAISON DE DEUX 
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Claims 
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English Abstract 

First and second instances (264, 266) of a message are received over a 
wireless connection (202, 204) . It is determined whether the first and 
second instances (264, 266) of the message contain an error. If both 
instances contain an error, an error free instance (264) of the message 
is reconstructed from the two erroneous instances by merging portions of 
the first and second instances (264, 266) . 

French Abstract 

Les premiere et seconde instances (264, 266) d'un message sont recues 
sur une connexion sans fil (202, 204). On determine si ces premiere et 
secondes instances (264, 266) du message contiennent une erreur. Si les 
■ deux in-stances contiennent* une erreur, une instance (264) *du message -sans * 
erreur est reconstruite a partir des deux instances erronees par fusion 
de parties des premiere et seconde instances (264, 266) . 
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SYSTEM FOR DELIVERING DATA CONTENT OVER A LOW BIT RATE TRANSMISSION CHANNEL 
SYSTEME PERMETTANT D ' ENVOYER UN CONTEND* DE DONNEES SUR UN CANAL DE 
TRANSMISSION A FAIBLE DEBIT BINAIRE 
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English Abstract U 

The present invention provides a system by which information content 
(250) is delivered to a mobile device (18). The web content (250) is 
divided into data (202) and script information (204). The script 
information (204) is used to operate on the data (202) to render the data 
(202) in a predetermined format. 

French Abstract 

Cette invention a trait a un systeme permettant d'envoyer un contenu 
d' information (250) a un dispositif mobile (18). Le contenu du lacis 
(250). est divise en donnees (202) et information de script (204). On 
. utilise, cette. information .de .script (,204).pQur prendre en .charge l.es . 
donnees (202) afin de les convertir a un format predetermine. 
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Detailed Description 

Claims 
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English Abstract 

A system controls access to broadcast messages (298) received by a 
plurality of mobile devices (18) . Selected mobile devices (18) are 
provided with a broadcast encryption key (BEK) (268) . The broadcast 
messages (298) are encrypted using the BEK (268) prior to broadcasting so 
that the selected mobile devices (18) containing the BEK (268) can 
. . decrypt, the broadcast mess^gejs (298) w The . brpadc^st messages (2.98). are . 
then broadcast. 

French Abstract 

L 1 invention concerne un systeme qui permet de commander l'acces a des 
messages a diffusion generale (298) recus par une pluralite de 
dispositifs mobiles (18) . Des dispositifs mobiles (18) selectionnes 
comportent une cle de cryptage de diffusion (BEK) (268) . Les messages 
diffuses (298) sont cryptes a 1 1 aide de la cle de cryptage (268) avant 
leur diffusion, de facon a pouvoir etre decryptes par les dispositifs 
mobiles (18) selectionnes contenant ladite cle (268) . Puis les messages 
sont diffuses. 
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LOW LEVEL* CONTENT FILTERING * " • 
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English Abstract 

A system and method for receiving wireless information on a portable 
device (10) includes receiving an information packet (160) comprising a 
first portion having topic information (166) indicative of content in the 
second portion (170) of the information packet (160) . The first portion 
of the information packet (160) is compared to content filter data (206) 
stored on the portable computing device (10) . At least the second portion 

(170) of the information packet is forwarded to another component of the 
portable computing device if the first portion matches any of the content 
filter data (206) . 

French Abstract 

Cette invention a trait a un systeme ainsi qu 1 a la technique 
correspondante permettant de recevoir une information radio sur un 
appareil portable (10), laquelle technique consiste a recevoir un paquet 
d ' informations (160) comportant une premiere partie renfermant une 
information de sujet (166) representative d'un contenu de la seconde 
partie "(17 0) du paquet d -1 ift fdrma t ions' (160) .*' La' premiere ' partie' du* paquet' 
d ' informations (160) est comparee a des donnees de filtre de contenu 
(206) memorisees dans le dispositif de calcul portable (10). La seconde 
partie au moins (170) du paquet d ' informations est expediee a un autre 
composant du dispositif de calcul portable si la premiere partie est en 
concordance avec les donnees de filtre de contenu (206), quelles qu'elles 
soient . 
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English Abstract 

The present invention is directed, in one embodiment, to a programming 
. . interface which enables de„vice/protocpl/ network, independent transmission 
of messages to, and programming of, mobile devices (18). In another 
embodiment, the present invention is directed to data structures 
maintained on, and supported by, the mobile devices (18) . The present 
invention also, in another embodiment, provides security for programming 
messages and an acknowlegement channel over which the mobile device (18) 
can acknowledge receipt of, and successful implementation of, a 
programming message (288) . 

French Abstract 

Cette invention a trait, dans un mode de realisation, a une interface de 
programmation permettant de transmettre des messages a un dispositif 
mobile (18) et de le programmer de maniere independante du dispositif, du 
protocole et du reseau. Dans un autre mode de realisation, cette 
invention porte sur des structures de donnees conservees et prises en 
charge par les dispositif s mobiles (18). Dans un autre mode de 
realisation elle porte egalement sur la securite de messages de 
programmation ainsi que sur un canal d 1 accuse de reception sur lequel le 
dispositif mobile (18) peut accuser reception d ! un message de 
programmation (288) et du succes de sa mise en oeuvre . 
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Electronic authentication method for computer network, involves 

authenticating primary and secondary proxy computers for establishing 

communication between client and server computers 
Patent Assignee: MICROSOFT CORP (MICT ) ; D AMOUR K T (DAMO-I); FISHMAN N S 

(FISH-I); KADYK D J (KADY-I); KRAMER M (KRAM-I) 
Inventor: DAMOUR K T; FISHMAN N S; KADYK D J ; KRAMER M 
Number of Countries: 027 Number of Patents: 002 
Patent Family: 

Patent No Kind Date Applicat No Kind Date Week 

EP 1251672 Al 20021023 EP 20028582 A 20020416 200312 B 

US 20020156906 Al 20021024 US 2001838408 A 20010419 200312 

Priority Applications (No Type Date): US 2001838408 A 20010419 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 
EP 1251672 Al E 23 H04L-029/06 

Designated States (Regional) : AL AT BE CH CY DE DK ES FI FR GB GR IE IT 



LI LT LU LV MC MK NL PT^fc SE SI TR 

.US 20020L56906 Al G0.6F-015/16 . 



Abstract (Basic) : EP 1251672 Al 

NOVELTY - A request for a service is dispatched by a client 
computer (201). The primary and the secondary proxy computers (202,204) 
are authenticated using the authentication data and the communication 
between the client computer and the server computer (201) is 
established. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is included for 
computer readable medium storing network communication program. 
USE - For computer network. 

ADVANTAGE - Maintains a high degree of confidentiality between the 
multiple proxies, without changing the existing standards, by 
authenticating the proxy computers. 

DESCRIPTION OF DRAWING (S) - The figure shows an explanatory view of 
computer network. 

Client computer (201) 
Proxy computers (202,204) 
pp; 23 DwgNo 3/11 
Title Terms: ELECTRONIC; AUTHENTICITY; METHOD; COMPUTER; NETWORK; 
. ■ AUTHENTICITY; PRIMARY; SECONDARY; COMPUTER; ..ESTABLISH; COMMUNICATE; . . 

CLIENT; SERVE; COMPUTER 
Derwent Class: T01 

International Patent Class (Main) : . G06F-015/16; H04L-029/06 
File Segment: EPI 



2/5/19 (Item 2 from file: 350) 

DIALOG (R) File 350: Derwent WPIX 

(c) 2004 THOMSON DERWENT. All rts . reserv. 

015061975 **Image available** 

WPI Acc No: 2003-122491/200312 

XRPX Acc No: N03-097522 

Secure connection negotiation method through proxy system, involves 
negotiating secure client-proxy and client-server connections , and 
encapsulating client-server connection within insecure client-proxy 
connection 

Patent Assignee: MICROSOFT CORP (MICT ); FISHMAN N S (FISH-I); KADYK D J 

(KADY-I); KRAMER M (KRAM-I); SEINFELD M E (SEIN-I) 
.Inventor:. FISHMAN N S; KADYK D- J ; KRAMER M; ..SEINEELD ,M E. , .... 
Number of Countries: 027 Number of Patents: 002 
Patent Family: 

Patent No Kind Date Applicat No Kind Date Week 

EP 1251670 A2 20021023 EP 20027078 A 20020327 200312 B 

US 20020157019 Al 20021024 US 2001838745 A 20010419 200312 

Priority Applications (No Type Date) : US 2001838745 A 20010419 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 
EP 1251670 A2 E 20 H04L-029/06 

Designated States (Regional): AL AT BE CH CY DE DK ES FI FR GB GR IE IT 

LI LT LU LV MC MK NL PT RO SE SI TR 
US 20020157019 Al H04L-009/00 

Abstract (Basic) : EP 1251670 A2 

NOVELTY - A secure connection between a client system and a proxy 
system is negotiated. A secure end-to-end connection is negotiated 
between the client and a server system using the client-proxy 
connection, and then the client-proxy connection is altered to be 
. . insecure. The secure end-to-end counectioa is. encapsulated with .the 
insecure client-proxy connection. 

DETAILED DESCRIPTION -An INDEPENDENT CLAIM is included for 
computer program product comprising recorded medium storing secure 
connection negotiation program. 

USE - For negotiating secure connection through proxy system of 



computer network. 

ADVANTAGE - Provides* a -secure client -server- connection that is • 
linked through a proxy, capable of exchanging encrypted data between 
the client and server. Minimizes communication overhead between client 
and server, as the data carried by client-proxy connection is not 
encrypted or decrypted. 

DESCRIPTION OF DRAWING (S) - The figure shows the block diagram of 
the secure client-sever connection negotiation system. 

pp; 20 DwgNo 1/5 
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Abstract (Basic) : US 20020099957 Al 

NOVELTY - An external client (340) establishes a secured connection 
with private corporate network (310) using secured socket layer (SSL) 
protocol. The client retains the ability to establish a separate and 
distinct connection with external resources (330a, 330b) outside the 
network, while maintaining a session with the network. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is included for 
computer program product for establishing online secure connection over 
private corporate network. 

USE - For establishing secure connection between external client 
and private corporate network over public network e.g internet. 

ADVANTAGE - Since the ability of the external client to establish 
connection with external resources outside the private corporate 
network are retained, the external client is allowed to directly 
communicate with the external resource rather than through channel 
communications to external resource through the corporate network. 
• * Improves- routing efficiency- and security o-f the private -corporat-e * 
network. 

DESCRIPTION OF DRAWING (S) - The figure shows a suitable network 
architecture for implementing the secure connection establishment 
method . 

Private corporate network (310) 



* • External resources^P^Oa , 330b) * r .... 

External client (340) 
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Abstract (Basic) : US 20020099727 Al 

NOVELTY - The data (218) is changed and notification (290) 
• • comprising both the change -(292) and a token -(294) 'identifying the ■ 
change is sent to a receiving device. A synchronization request is 
received from the device and the change is resend to the device if the 
request does not include the token. 

DETAILED DESCRIPTION - INDEPENDENT CLAIMS are included for the 
following : 

(1) Data synchronization system; and 

(2) Computer programmable product storing data synchronization 
instructions . 

USE - Used in PC, handheld device, multi-processor system, 
microprocessor-based or programmable consumer electronics, network PC, 
minicomputer, mainframe computer, local and remote processing device 
for synchronizing data. 

ADVANTAGE - The data is efficiently synchronized using the 
notification send to the receiving device and the notification can be 
updated without imposing burden on the user. 

DESCRIPTION OF DRAWING (S) - The figure shows a block diagram of the 
data structures and communication channels for synchronizing client 
data with server data. 

Data (218) 

Notification (290)- • '* ■ " 

Change (292) 

Token (294) 
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Abstract (Basic) : EP 1227637 A2 

NOVELTY - A transform specifically considering the operating 
characteristics of the mobile client is applied to the electronic 
content received at a mobile gateway (250) . The transformed content is 
stored in a mobile gateway cache (280) and is returned to the mobile 
clients (274,276,278,279) in response to a request including transform 
identifier . 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is included for 
computer program product storing transformed content obtaining program. 

USE - For obtaining modified content such as e-mail content, web 
page content, financial data, sports information, notification, 
schedule, contact, configuration data which are transformed according 
to operating characteristics e.g. processor, memory, display, 
communication link, application or "operating J saftware of a mobil'e 
client e.g. telephone, pager, PDA, laptop, desktop, etc. 

ADVANTAGE - A mobile gateway allows for support of new mobile 
clients without requiring modification to the content server. The added 
burdens of customizing content for mobile clients are met by the mobile 
gateway, without imposing significant processing overhead on the 
content server. 

DESCRIPTION OF DRAWING (S) - The figure shows the block diagram of 
the mobile gateway for transforming e-mail content for mobile clients. 
Mobile gateway (250) 
Mobile gateway cache (280) 
Mobile clients (274,276,278,279) 
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Agent service provision method in expert proxy server, involves compiling 
results of communication with application, for transmission to wireless 
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NOVELTY - The expert proxy server (130) determines whether a 
service is to be provided to a wireless device, and identifies an 
application that provides the service. The expert proxy server compiles 
the results of the communication with the application, and then 
transmits the compilation to the wireless device (110) through wireless 
network (120) . 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is included for 
computer program product for acting of expert proxy server as agent. 

USE - In network environment for acting of expert proxy server 
connected to wireless devices, as agent. 

ADVANTAGE - Since extensive processing occurs at the expert proxy 
server rather than at the wireless device, the application on the 
wireless device may be simplified and is smaller compared to the 
supporting applications on the expert proxy server, thereby preserving 
the limited memory and processing capability of the wireless device. 
During transmission, the smaller bandwidth of the wireless network is 
preserved by transmitting a minimal amount of information over the 
wireless network while leaving more extensive communications to occur 
over high bandwidth external networks. 

DESCRIPTION OF DRAWING (S ) - The, figure shows a .network environment. 

Wireless device (110) 
Wireless network (120) 
Expert proxy server (130) 
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Data format converting method in gate way computer system involves 
identifying sequence of conversion modules for converting data structure 
from primary data format to secondary data format 
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Abstract (Basic) : EP 1091536 A2 

NOVELTY - The data structure is converted from primary data format 
into an intermediate data format using the primary format conversion 
module of identified sequence of data conversion modules. Then the data 
structure is converted from the intermediate data format into the 
secondary data format using the secondary format conversion module of 
the sequence. 

DETAILED DESCRIPTION -The first data format is identified as 
received from the originating computer system. The second data format 
is identified as compatible with the remote computer systems. The 
remote computer system includes a server computer system or a wireless 
device. INDEPENDENT CLAIMS are also included for the following: 

(a) Computer program product; 

(b) Gate way computer system 

USE - For converting data format in gate way computer system. 

ADVANTAGE - Uses gate way computer system for both dynamic content 
translation and dynamic protocol and network translations. The 
conversion receives automatically upon the receipt of a given data 
structure without requiring any user intervention. 

DESCRIPTION OF DRAWING (S) - The figure shows the data conversion 
system providing a suitable operating environment. 
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Abstract (Basic) : EP 1091532 A2 

NOVELTY - Message intended for remote destination device is 
received from originating device at gateway identified with device 
module associated with the intended remote destination device. Message 
is manipulated using device module and is then transmitted to 
destination device through network using protocol and recognized 
format, irrespective of differences in originating and receiving 
protocols . 

DETAILED DESCRIPTION - A computer readable medium for providing 
computer program codes is utilized by the gateway to implement 
■ forwarding of data. One or more originating devices are logically 
connected to and communicate using one or more originating protocols 
with one or more originating networks logically connected to a gateway. 
Messa'ge generated at the* originating device, that is intended for * 
remote destination devices, using receiving protocols. INDEPENDENT 
CLAIMS are also included for the following: 

(a) Data communication method; 

(b) Networked computer system 
USE - Network computer system. 

ADVANTAGE - Gateway accommodates data transfer from a data 
originating device over a wide variety of networks to a wide variety of 
destination devices even if those networks use different protocols and 
even if the devices recognize different data formats. The gateway is 
incorporated into wired as well as wireless networks, thus the gateway 
is beneficial in the wireless world where formats and protocols tend to 
vary device to device and network to network. The gateway is flexible 
as it facilitates both unidirectional and bidirection communication. 

DESCRIPTION OF DRAWING ( S ) - The figure shows the networked computer 
system. 
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Abstract (Basic) : WO 200028693 Al 

NOVELTY - Instances of a message are received over a wireless 
connection. When the instances are judged to contain errors, the 
message is reconstructed, by merging erroneous portions of instances to 
generate error-free instances. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for 
data structure received by mobile device. 

USE - For pager, handheld personal computer, palm PC. 

ADVANTAGE - The correct contents of message is displayed to the 
user, by rectifying the errors reliably. 

DESCRIPTION OF DRAWING (S) - The figure shows flowchart illustrating 
mobile device operation. 
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Abstract (Basic) : WO 9935802 Al 

NOVELTY - A mobile device component is disposed on a mobile device 
and includes a receiver that receives the content from a transmitter. A 

. . routex is coupled to the. receiver and a . se.cond .store to .provide .the 
script file and the data file to the second store. A transport is 
coupled to the second store and configured to selectively retrieve the 
data file and execute the script to place the data in the desired 
rendering form. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is included for: a 
computer program that includes instructions readable by a mobile 
device . 

USE - In personal mobile computing devices commonly known as mobile 
devices for delivering and receiving information on a mobile device. 
The user of the mobile device may also have access to, and use, a 
desktop computer at work or at home, or both. 

ADVANTAGE - Provides the ability to deliver content to a mobile 
device over a low bit rate channel in an economic and efficient manner. 
Small segments of data can be delivered instead of full HTML pages. The 
present invention also provides a mechanism by which logging and 
filtering can be accomplished in an efficient manner 

DESCRIPTION OF DRAWING ( S ) - The drawing is a simplified block 
diagram illustrating one embodiment of a mobile device in a system in 
accordance with the principles of the present invention. 
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Abstract (Basic) : WO 9935801 Al 

NOVELTY - The method involves providing selected mobile devices, o 
the number of mobile devices, with a broadcast encryption key (BEK) 
encrypting the broadcast messages utilizing the BEK prior to 
broadcasting the broadcast messages such that the selected mobile 
devices having the BEK are configurable to decrypt the encrypted 
broadcast messages. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is included for: a 
system for controlling access to broadcast message transmitted over an 
address and received by several mobile devices. 

USE - In personal mobile computing devices for delivering 
information to, and programming mobile devices. 

ADVANTAGE - Provides efficient mechanism by which content messages 
could be transmitted in a secure fashion 

DESCRIPTION OF DRAWING (S) - The drawing shows a flow diagram 
illustrating programming of a broadcast key into a mobile device. 
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Abstract (Basic) : WO 9935778 A2 

NOVELTY - The method involves receiving an information packet 
comprising a portion having topic information indicative of content in 
a second portion of the information packet. The first portion of the 
information packets is compared to content filter data stored on the 
portable computing device. The second portion of the information 
packets is forwarded to another component of the portable computing 
device if the first portion matches any of the content filter data. The 
information packet is discarded if the first portion does not match any 
of the content filter data. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is included for a 
computer readable medium, a portable computing device, an information 
packet for transmitting information to a portable computing device, and 
a computer implemented method for obtaining content filter data on a 
portable computing device used for processing wireless information. 

USE - For receiving wireless information on portable computer. 

ADVANTAGE - Efficiently processes information transmitted over 
wireless channel to mobile device in order to_ conserve ^ battery 
resources on computer. 

DESCRIPTION OF DRAWING) S) - The figure shows a general structure of 
a message packet transmitted to the mobile device in accordance with 
one aspect of the invention. 
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Abstract (Basic) : WO 9935591 A2 

NOVELTY - A device, protocol, network independent mechanism is 
provided, by which the mobile device (18) can be programmed. Data is 
encrypted, such that it can be sent in an encrypted and secure fashion 
from an originator to the mobile device (18) . 

DETAILED DESCRIPTION - A programming interface enables 
device/protocol/network independent transmission of messages to, and 
the programming of, mobile devices (18) . Data structures are also 
maintained on and supported by the mobile device (18) . Security is 



messages and an acknowledgmenl^Pnannel over 
which the mobile device (18) can acknowledge receipt of, and successful 
implementation of, a programming message. INDEPENDENT CLAIMS are 
included for; a computer readable medium comprising a data structure; a 
transmission system for transmitting information between from an 
originator to a mobile device; a wireless transmission system for 
transmitting programming data to a mobile device having a one-way radio 
receiver . 

USE - Broadcasting to, and programming a mobile device in a 
protocol device e.g. PDAs. 

ADVANTAGE - Enables device/protocol/network independent 
transmission of messages* to", and 'programming of, mobile 'devices . 

DESCRIPTION OF DRAWING (S) - The drawing shows a block diagram of a 
mobile device in a system according to the invention. 

(12) Content provider (10) 

Content provider (12) 

Wireless carrier (14) 

Mobile device (18) 

pp; 88 DwgNo 1/12 

Title Terms: PROGRAM; INTERFACE; TRANSFER; INFORMATION; MOBILE; RECEIVE; 

MOBILE; DEVICE; PERSON; DIGITAL; ASSIST 
Derwent Class: T01 

International Patent Class (Main) : G06F-017/00; H04L-009/00 ; H04L-009/10 

International Patent Class (Additional): G06F-011/30; G06F-012/14; 

G06F-013/00; G06F-015/00; G06F-017/60; H04L-009/32 ; H04L-013/08 ; 

H04L-029/06 ; H04M-001/66 
File Segment: EPI 



Set Items Descriptiot^ 

51 807 AU= (TUNIMAN, D? OR TUNIMAN D? OR GOLDSCHMIDT, P? OR GOLDSC- 

HMIDT P? OR 0 1 LEARY, M? OR 0 1 LEARY M? OR KADYK, D? OR KADYK D- 
?) 

52 4 SI AND PROTOCOL 

53 0 SI AND MOBILE () DEVICE? 
File 2:INSPEC 1969-2004/Feb W5 

(c) 2004 Institution of Electrical Engineers 
File 6:NTIS 1964-2004/Mar Wl 

(c) 2004 NTIS, Intl Cpyrght All Rights Res 
File 8:Ei Compendex ( R) 1970-2004/Feb W5 

(c) 2004 Elsevier Eng. Info. Inc. 
File 34:SciSearch(R) Cited Ref Sci 1990-2004/Feb W5 

(c) 2004 Inst for Sci Info 
File 35: Dissertation Abs Online 1861-2004/Feb 

(c) 2004 ProQuest Inf o&Learning 
File 65: Inside Conferences 1993-2004/Mar Wl 

(c) 2004 BLDSC all rts . reserv. 
File 92:IHS Intl. Stds.fi Specs. 1999/Nov 

(c) 1999 Information Handling -Services • - • ■ 
File 94: JICST-EPlus 1985-2004/ Feb W5 

(c)2004 Japan Science and Tech Corp(JST) 
File 95:TEME-Technology & Management 1989-2004/Feb W4 

(c) 2004 FIZ TECHNIK 
File 99:Wilson Appl . Sci & Tech Abs 1983-2004/Feb 

(c) 2004 The HW Wilson Co. 
File 103: Energy SciTec 1974-2004/Feb B2 

(c) 2004 Contains copyrighted material 
File 144: Pascal 1973-2004/Feb W5 

(c) 2004 INIST/CNRS 
File 202: Info. Sci. & Tech. Abs. 1966-2004/Feb 20 

(c) 2004 EBSCO Publishing 
File 233: Internet & Personal Comp. Abs. 1981-2003/Sep 

(c) 2003 EBSCO Pub. 
File 239:Mathsci 1940-2004/Apr 

(c) 2004 American Mathematical Society 
File 275: Gale Group Computer DB(TM) 1983-2004/Mar 09 

(c) 2004 The Gale Group 
File 434 : SciSearch (R) Cited Ref Sci 1974-1989/Dec 

(c) 1998 Inst for Sci -Info ■ - ....... 

File 647: CMP Computer Fulltext 1988-2004/Feb W5 

(c) 2004 CMP Media, LLC 
File 674: Computer News Fulltext 1989-2004/Feb W5 

(c) 2004 IDG Communications 
File 696: DIALOG Telecom. Newsletters 1995-2004/Mar 08 

(c) 2004 The Dialog Corp. 



2/5/1 (Item 1 from fiW 34) 

DIALOG (R) File 34 : SciSearch (R) Cited Ref Sci 
(c) 2004 Inst for Sci Info. All rts. reserv. 

05791656 Genuine Article#: WX900 Number of References: 20 
Title: One course versus two courses of anti thymocyte globulin for the 
treatment of severe aplastic anemia in children 

Author(s): Matloub YH (REPRINT) ; Smith C; Bostrom B; Koerper MA; OLeary M 
; Khuder S; Smithson WA; Nickerson HJ; Silberman T; Hilden J; Moertel 
CL; Month S; Monteleone P; Ramsay NKC 

Corporate Source: MED COLL OHIO,DEPT PEDIAT, DIV PEDIAT HEMATOL ONCOL, 3000 
ARLINGTON AVE/TOLEDO//OH/4 3614 (REPRINT); MED COLL OHIO,DEPT INTERNAL 
MED/TOLEDO/ /OH/ ; CHILDRENS HLTH CARE, /MINNEAPOLIS //MN/ ; UNIV CALIF SAN 
FRANCISCO, DIV PEDIAT HEMATOL/SAN FRANCISCO//CA/94143; MAYO CLIN, DIV 
PEDIAT HEMATOL ONCOL/ ROCHESTER/ /MN/v MARSH-FIELD CLIN FDN MED RES' & ■ 
EDUC, /MARSHFIELD//WI/54449; CHILDRENS HLTH CARE, PEDIAT HEMATOL ONCOL/ST 
PAUL//MN/; OAKLAND KAISER HO SP, /OAKLAND/ /CA/ ; BAYSTATE MED 
CTR, /SPRINGFIELD/ /MA/ ; UNIV MINNESOTA, DIV PEDIAT HEMATOL 
ONCOL/MINNEAPOLIS//MN/55455; UNIV MINNESOTA, DIV PEDIAT BONE MARROW 
TRANSPLANT/MINNEAPOLIS/ /MN/ 554 55 

Journal: JOURNAL OF PEDIATRIC HEMATOLOGY ONCOLOGY, 1997, V19, N2 (MAR-APR) 

, P110-114 

ISSN: 1077-4114 Publication date: 19970300 

Publisher: LI PPINCOTT- RAVEN PUBL, 227 EAST WASHINGTON SQ, PHILADELPHIA, PA 
19106 

Language: English Document Type: ARTICLE 
Geographic Location: USA 

Subfile: CC CLIN — Current Contents, Clinical Medicine; 

Journal Subject Category: ONCOLOGY; HEMATOLOGY; PEDIATRICS 

Abstract: Purpose: The aim of the therapeutic trials was to optimize the 

treatment of severe aplastic anemia (SAA) and moderate aplastic anemia 
in children who lack a suitable bone marrow donor, using 
immunosuppressive therapy in the most effective combination and dose. 

Patients and Methods*: Two sequential therapeutic trials for the 
treatment of severe and moderate aplastic anemia in children were 
conducted by 10 institutions. The treatment protocols included 
antithymocyte globulin (ATG) , prednisone, and cyclosporine A (CSA) ; 
patients entered on the first protocol , 0190 (ATG x 2), were given 
two courses of ATG, and those enrolled on the second protocol / 0190B 
(ATG x 1), were given only one course of ATG. Ten patients were 
evaluable on ATG x 2. All patients had SAA; three had hepatitis-induced 
severe aplastic anemia (HI-SAA) . Twelve patients were evaluable on ATG 
x 1; all had SAA, one of whom had HI-SAA. 

Results: Seven of 10 patients on ATG x 2 responded, and eight of 12 
patients treated on ATG x 1 responded. 

Conclusion: Treatment with immunosuppressive therapy using ATG, 
CSA, and prednisone was very well tolerated The response rates in both 
protocols were similar, and results compare favorably with those of 
previous therapeutic trials, suggesting that a second course of ATG is 
not necessary. 
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Abstract: The IAEA safeguards system is experiencing what can be seen as a 
revolution and, in doing so, is confronting a series of challenges. 
Strengthening measures have meant the availability of more information, 
increased access to facilities and other locations, and the enhanced 
use of advanced technology. Implementing these measures ( has demanded a 
period of rapid development, which is far from complete. These 
challenges can be grouped into three areas: drawing and maintaining 
safeguards conclusions, designing and implementing integrated 
safeguards, and achieving 'cost neutrality' while maintaining quality 
and credibility. Implementation of additional protocols represents the 
most dramatic step the international community has taken over the past 
decade to strengthen the IAEA safeguards system. However, the full 
potential of strengthened and integrated safeguards can be realized 
only when there is universal adherence to the provisions of INFCIRC/540 
(Corr.). In 1997, when the Board of Governors approved the Model 
Additional Protocol , there was no shortage of supporting statements 
by Member States. It is disappointing, therefore, that so many States 
have been slow in matching their words with deeds. The IAEA safeguards 



* system is changing anc^lesents many challenges. The A^pfcy is working 
to meet these challenges and, as experience is gained, the planning and 
implementation measures are being further developed. At the same time, 
safeguards activities continue to be conducted, covering the 352 
facilities with one significant quantity or more of nuclear material. 
The fact that the Agency is managing to conduct these activities with 
historically high levels of success while facing all the challenges 
that have been outlined is an achievement in which the Agency can take 
pride. 
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Abstract: Full text: The safeguards system is experiencing what has been 
seen as a revolution and, in doing so, it is confronting a series of 
challenges. These can be grouped into three areas. Drawing and 
maintaining safeguards conclusions - The process by which the 
safeguards conclusions are derived is based upon the analysis, 
evaluation and review of all the information available to the Agency. 
This process is on- going, but the State Evaluation Reports are 
compiled and reviewed periodically. For States with an additional 
protocol- in force, the absence of . indicators, of the presence- of- 
undeclared nuclear material or activities provides the basis for the 
safeguards conclusion. Future challenges center on States 1 expectations 
of, and reactions to, the results of the evaluation and review process. 
Designing and implementing integrated safeguards - The conceptual 
framework of integrated safeguards is being actively pursued. Basic 
principles have been defined and integrated safeguards approaches have 
been developed for various types of facilities. Work is also 
progressing on the design of integrated safeguards approaches for 
specific States. Complementary access is being successfully 
implemented, and procedures for the use of unannounced inspections are 
being developed with the prospect of cost- effectiveness gains. Costs 
neutrality vs. quality and credibility - The Department faces serious 
staff and financial challenges. It has succeeded so far in 'doing more 1 



" and 'doing better 1 wit^R a zero-real growth budget, bu^^he scope for 
further significant efficiency gains is exhausted. There is no capacity 
to absorb new or unexpected tasks. Difficulties in recruiting and 
retaining qualified and experienced staff exacerbate the problems and 
add to costs. The Director General of the IAEA has referred to the need 
for new initiatives to bridge the budgetary gap; a possible measure is 
proposed. The tasks of meeting the challenges and demands of 
strengthened safeguards have been added to the tasks of implementing 
traditional , safeguards . New. tasks axe appearing; .a .significant recent 
example is the consequence, for the Department's Security of Material 
Programme, of the September terrorist attacks in the United States. The 
gap between what is required and the available resources cannot 
continue to increase indefinitely, (author) 
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Country of Publication: International Atomic Energy Agency (IAEA) 
Abstract: For the past 30 years, the International Atomic Energy Agency 1 s 
safeguards system has contributed to the international 
non-proliferation regime, by providing, inter alia, assurances 
regarding the peaceful uses, of declared, nuclear: material. However, .the 
discovery of a clandestine nuclear weapons programme in Iraq in 1991 
drew world-wide attention to the need to strengthen the system to 
address the absence of undeclared nuclear material and activities. 
Efforts to strengthen the IAEA's safeguards system began in 1991 and 
culminated in 1997 when the IAEA's Board of Governors approved a Model 
Protocol Additional to IAEA Safeguards Agreements which greatly 
expands the legal basis and scope of IAEA safeguards. Within this 
strengthened system it is expected that the IAEA be able to provide 
assurance not only of the absence of diversion of declared nuclear 
material but also on the absence of undeclared nuclear material and 
activities. This is to be done within a safeguards system that uses an 
optimal combination of all safeguards measures available, thereby 
achieving maximum effectiveness and efficiency within the available 
resources. This paper will summarize the evolution of the safeguards 
system, describe strengthened safeguards, report on the status of 
implementing the strengthening measures, and outline plans for 
integrating all available safeguards measures, (author) 
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The subscriber office dSKles the rfeceivWcb authenticat:^B|. request using 
the first encryption key , recognizes ir as the authentication request, 
and transmits an authentication respWse encrypted using the first 
encryption key to the base station. The base station decodes the 

received authentication response us ing/the\ second encryption key to 
recognize the validity of the authentication response. 
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ABSTRACT 

PROBLEM TO BE SOLVED: To provide a contents information transmission 
method, the recording method, transmitter, recorder, transmission medium 
and recording medium thereof, by which a decoder side cannot respectively 
identify key generating algorithms used for encryption according to each 
designated algorithm number only with the intelligence given to an 
encryption side, so as to more vigorously prevent unauthorized reproduction 
and copy of contents information, thereby enhancing copyright protection. 

SOLUTION: The method adopts transmission or recording of encrypted contents 
information resulting from encrypting contents information, by using a 1st 
key generated from source information of the 1st key, source information "of 
an encrypted 1st key resulting from encrypting source information 
of the 1st key, using a 2nd key generated by a prescribed key generating 
algorithm on the basis of a given initial value, algorithm identification 
information for identifying the prescribed by generating algorithm and 
initial value information denoting the initial value. 
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ABSTRACT 

PROBLEM TO BE SOLVED: To provide a method and a device capable of 
generating a distributed cryptographic key at a higher speed as compared 
with the conventional distributed key generating method, and to provide a 
recording medium in which the program therefor is recorded. 



SOLUTION: This distributed cryptographic key generating device in an 
enciphering device has i-pieces (i=l, 2,..., k) of cryptographic key 
generating means (i) for generating the cryptographic keys by setting p2q 
as a 1st public key (n) with pi and qi (where p=Σ pi and 

q=Σ qi) obtained by distributing two prime numbers (p) and (q) to a 
server (i) as a 1st distributed secret key, setting (e) satisfying ed = 1 
mod L (where L=p(p-1) (q-1) as a 2nd public key and setting di (where 
d=Σ di) obtained by distributing (d) to the server (i) as a 2nd 
distributed secret key , and obtains cipher text C based on C=Me (mod 
n) from plaintext M by using the 1st and 2nd public keys (n) and (e) 
generated by the means (i) . Each of cryptographic key generating means (i) 
is provided with a random number generating means for respectively 
generating two random numbers pi and qi and a public key candidate 
generating means for gene-rating candidates- N= (-& Sigma ; il, 2,. . ., kpi)2- 
(Σil, 2,..., kqi) for the 1st public key (n) by using a BGW 
protocol . 
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ABSTRACT 

PROBLEM TO BE SOLVED: To provide a generating system for an encryption key 
where a common encryption key is easily generated and the secrecy is easily 
managed. 

SOLUTION: A 1st encryption key generating section 1 receives 1st data 
and ID information IDB of a user B, generates an encryption key KAB (A) of a 
user A by a 2nd algorithm, and a 2nd encryption key generating section 2 
receives 2nd data and ID information IDA' of a user A, generates an 
encryption key KABB of a user B by the 2nd algorithm . The 1st data are 
generated by a 1st algorithm 3 based on the ID information IDA of the user 
A and a random number. The 2nd data are generated by the 1st algorithm 3 
based on the ID information IDB of the user B and the random number. The 
encryption key KAB (A) of the user A and the encryption key KAB(B) of the 
user B are identical to each other. 
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ABSTRACT 

PURPOSE: To safely transmit a cipher key and at the same time, to 
easily encode and decode information data by protecting the information 
data themselves with the , 1st cipher key .and transmission of .the 1st. 
cipher key itself by means of another cipher key . 

CONSTITUTION: Assuming that earth stations A and B respectively have 1st 
cipher keys MA and MB for making information signals private , 

transmission keys KAR and KBT for making the 1st cipher keys private 
, and reception keys KAR and KBR, the station B produces a call signal to 
the station A and simultaneously transmits the KBT when the station B makes 
an originating call. At the station A, upon receiving the KBT, one is 
selected out of plural MAs and the selected MA is made private by using the 
KBT. Then the private MA is transmitted to the station B together with the 
KAT. At the station B, the received signals are decoded by using the 
reception key KBR and the MA is obtained . Moreover, one is selected out 
of plural MBs and the selected MB is made private by using the received 
KAR. The private MB is transmitted to the station A. At the station A, the 
received signal is decoded by using the reception key KAR and the MB is 
obtained . At both stations A and B, the initial data of the scramble of 
transmitting information data for the stations B and A are set by using the 
received MB and MA, respectively. 
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Abstract (Basic) : WO 2003107585 Al 

NOVELTY - The- first device (10) is a security module containing a 
first encryption key , called private key (PAKV) of a pair of 
asymmetric encryption keys . The second device is a receiver (11) 
comprising at least a second encryption key , called public key 

(PAKB) of the pair of asymmetric encryption keys . Each of the 
devices further comprises a symmetric key (13) . The first device (10) 
generates a first random number (A) , which is encrypted by the private 

key (PAKV), then transmitted to the second device (11), wherein it 
is decrypted by means of the public key (PAKB) . 

DETAILED DESCRIPTION - The second device (11) generates a second 
random number (B), which is encrypted by the public key (PAKB), 
then transmitted to the first device (10), where it is decrypted by the 

private key (PAKV). A session key (SK) , used for secure data 
exchanges, is generated by a combination of the symmetric key and the 
random numbers (A, B) generated and received by each of the devices. 

USE - For secure data exchange between two locally interconnected 
devices, e.g. a receiver .and a . security .module,, used . especially in. 
the field of pay-per-view television services. 

ADVANTAGE - The unauthorised decoding of such services is 
particularly complex as to be virtually impossible. 

DESCRIPTION OF DRAWING (S) - The drawing is a schematic layout 
of the data exchange system. 

first device ( 10 ) 

second device ( receiver ) (11) 

symmetric key (13) 
. private key (PAKV) 
public key (PAKB) 

session key (SK) 

random numbers (A,B) 
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Abstract (Basic) : EP 1326157 A2 

NOVELTY - File data is stored in a format which integrates an 
encrypted header (110) and an encrypted data portion (112) to 
generate a secured file (108) . The header includes two security keys 
with the first key encrypted by the second key and the second key 
encrypted and guarded by encrypted access rules (104) . 

DETAILED DESCRIPTION - The encrypted data portion is generated 
by encrypting the created document data (100) with the first 
security key according to a pre-determined cipher scheme. 

INDEPENDENT CLAIMS are also include for ; 

(1) A method for securing electronic data in a format. 

(2) Stored software. 

USE - For protecting and securing digital electronic data in an 
enterprise environment. * ............ 

ADVANTAGE - The digital electronic data is stored in a secure 
format accessible only by users having the appropriate granted access 
rights and security keys. 

DESCRIPTION OF DRAWING (S) - The drawing shows a flow diagram for 
securing a created document according to a secured file form. 

Created document data (100) 

Encrypted access rules (104) 

Secured file (108) 

Encrypted header (110) 

Encrypted data portion (112) 
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Abstract (Basic) : US 2003WP5534 Al 

NOVELTY - The method involves adjusting the value parameter in 
response to" the provision of encrypted data * communications to' a user. 
The encrypted data communications are provided to the user until the 
value parameter is exhausted. The value' parameter is associated with a 
sequence of encryption key provided to an anonymous user in 
exchange for a payment. 

DETAILED DESCRIPTION - The sequence of encryption key is used 
for decrypting a message that has been encrypted using another 
sequence of encryption key . The other sequence of encryption key 

is used for decrypting the message that has been encrypted using the 
sequence of encryption key - INDEPENDENT CLAIMS are also included 
for the following: 

(a) an apparatus for conducting secured electronic commerce; and 

(b) a portable storage device . 

USE - Used for conducting private secure electronic commerce over 
the Internet. 

ADVANTAGE - Assures that a user remains anonymous to the encryption 
server as well as any party that might intercept the encrypted data. 
Provides a reliable and secure way of serving users and service 
providers throughout the world. Eases access to the seller 1 s public 
key since the sellers have the option to use a single public 
private key pair on a* permanent "basis . "Enables a vendor to" reliably ' 
receive payment for sold product. Eliminates the ability of hackers to 
know the content of a transaction. Protects the user and the content ! s 
of the user transaction from unauthorized disclosure. 

DESCRIPTION OF DRAWING (S) - The figure shows the schematic block 
diagram of the method for conducting private secure electronic 
commerce . 
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Abstract (Basic) : WO 200326199 Al 



involves a secret communicatio^Pbetween a 

transmitting unit and a xeceiving unit .. The . first time. any message .is 
sent from the transmitting unit to the receiving unit, the units are 
synchronized. The transmitting unit generates a public key (16) and 
a security key (17a) . A message (15) is encrypted using the public 
key and the first security key . The encrypted message (18) and 
the public key are sent via a transmitting medium. The first 
security key is not sent to the receiving unit. Upon receipt, the 
receiving unit generates a second security key that is identical 
to the first security key . The receiving unit decrypts the message 
to the readable message using the public key and the second 
security key . 

USE - For providing confidentiality of message which are sent via 
communication lines 

ADVANTAGE - Provides increased encrypting durability of 
communication and excludes possibility of unauthorized access to 
transmitted information. Simple and reliable 

DESCRIPTION OF DRAWING (S) - The figure shows a flow chart of an 
implementation system of the invention. 

Message (15) 
Public key (16) 

.Security key (17a) - ........ 

Encrypted message (18) 
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Abstract (Basic) : WO 200287146 Al 

NOVELTY - An encryption system can flexibly modify a decoding 
authority and prevent unauthorized use by a third person. When an 
encryption file is accepted by a client, a decryption executer ID, a 
creator ID, and a first encryption session key are transmitted to a 
key management server (10) (step 141) . Check is made whether the 
creator ID is stored as a decryption object . ID .in a management database, 
corresponding to the decryption executer ID (step 147). 

DETAILED DESCRIPTION -" If stored, the first encryption session 
key is decrypted by an inherent key corresponding to the creator ID in 
the management database (step 148) . The session key obtained is 
encrypted by a public key corresponding to the decryption executer 



w A 

ID (step 149) . At the Orient who has received this s^R>nd 

encryption session key , decryption is performed by using a secret 
key so as to obtain the session key . Encrypted data is decrypted 
by using the session key. 

DESCRIPTION OF DRAWING (S) - first encryption session key are 
transmitted" to a key management server XlG) (step 141) 

Check is made whether the creator ID is stored as a decryption 
object ID in a management database corresponding to the decryption 
executer ID (step 147) 

If stored, the first encryption session key is decrypted by an 
inherent key corresponding to the creator ID in the management database 
(step 148) 

Session key obtained is encrypted by a public key 

corresponding to the decryption executer ID (step 149) 
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Abstract (Basic) : KR 2002042083 A 

NOVELTY - A double encoding and transmitting/receiving method for a 

private key movement and roaming service in a public key based 
configuration is provideci to draw " out a private ' key through a 
stable communication channel by doubly encoding and entrusting a user's 

private key to a roaming service center. 

DETAILED DESCRIPTION - A user firstly encodes one's private key 
as a password using a personal computer (S 101 ) . The user requests a 
roaming service center to authenticate a public key (S102). A 
roaming service center authenticates the user and issues a note of 
authentication (S103) . The user secondly encodes a public key of 
the roaming service center ( S104 ) . The user transmits an identification 
authenticated by the roaming service center to a server of the roaming 
service center ( S105 ) . The server of the roaming service center stores 
an N value, a second encoded private key , and 

identification (S106) . When the user requests the roaming service center 
to draw out a private key , the server of the roaming service 
center forms a stable communication .channel, and requests the user to 
input the identification and a password. The user inputs and transmits 
the identification and the password to the roaming service center. The 
server of the roaming service center detects the identification which 
the user inputs and detects the second encoded private key from 
a double encoded private key . 
pp; 1 DwgNo 1/10 
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Double encoding and transmitting/ receiving method for private key 
movement and roaming service in public key based configuration 

Patent Assignee: SECUI.COM CORP (SECU-N) 
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Number of Countries: 001 Number of Patents: 001 
Patent Family: 
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Abstract (Basic) : KR 2002041857 A 

NOVELTY - A double encoding and transmitting/receiving method for a 
private key movement and roaming service in a public key based 
configuration is provided to draw out a private key through a 
stable communication channel by doubly encoding and entrusting a user's 
private key to a roaming service center. 

DETAILED DESCRIPTION - A user firstly encodes one's private key 
as a password using a personal computer ( S 101 ) . The user requests a 
roaming service center to authenticate a public key (S102) . A 
roaming service center authenticates the user and issues a note of 
authentication ( S103 ) . The user secondly encodes a public key of 
the roaming service center ( S104 ) . The user transmits an identification 
authenticated by the roaming service center to a server of the roaming 
service center ( S105 ) . The server stores the second encoded private 
key and identification in a double encoding private key database 
and an identification database, respectively ( S106) . When the user 
requests the roaming service center to draw out a private key 
(S107), the server forms a stable communication channel ( S108 ) , and 
requests the user to input -the identification, and a password (SI 0-9) , The- - 
user inputs and transmits the identification and the password to the 
roaming service center ( S110) . The server detects the identification 
which the user inputs (Sill) and decodes the second encoded private 

key to a private key of the roaming service center ( S112 ) . The 
roaming service center judges whether the decoded identification is 
identical with the identification which the user has inputted (S113) . 
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Abstract (Basic) : DE 10114157 Al 

NOVELTY - The encryption key generation method provides a 
public encryption key (14) which has a first part (18) which is 
common to all receivers ( 12 , 12 1 , 12 1 1 ) for the encrypted information 
and a second part (20) calculated via data specific to each receiver , 
with a private key ( 16, 16 ' , 16 1 1 ) for deciphering of the information 
transmitted to each receiver by a key distribution center (22) . 

USE - The method is used for computer-aided generation of a public 
encryption key for transmission of sensitive information. 

ADVANTAGE - The method allows a separate encryption key to be 
provided for each receiver with minimum memory requirement. 

DESCRIPTION OF DRAWING (S) - The figure shows a schematic 
representation of a computer-aided encryption key generation 
method . 

Receivers (12,12M2") 
Public encryption key (14) 
Private keys ( 16, 16 ' , 16 ' ' ) 
First part of encryption key (18) 
Second, part of encryption. .Jcey . (20) ...... 

Key distribution center (22) 
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Service issue method for shops and entrance gate, involves providing 
service to user by encrypting user identification information 
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Abstract (Basic) : US 20020034305 Al 

NOVELTY - An identification information (ID) (1130) is generated in 
response to a service application filed by an user to a service issue 
system (1110) . The generated information is encrypted using a private 
key (1140) of the service issue system. The encrypted data (1160) is 
again encrypted by another encryption key of the user, and is 
output to the user. 

DETAILED DESCRIPTION - INDEPENDENT CLAIMS are also included for the 
following : 

(a) Service issue system; 

(b) Ticket issue method; 

(c) Ticket issue system; 

(d) Service providing method; 

(*e) Service providing system; " * 

(f) User application receiving method; 

(g) User application receiving system 

USE - For issuing services after user's authentication, in shops 
and entrance gates . 

ADVANTAGE - Enables to determine user identity or the user's rights 
are legitimate or not even in a place of use, where the database of the 
user or a sufficient network cannot be installed, hence even a shop of 
low reliability can be used as a place where transactions are 
positively substantiated by suppressing illegal act. 

DESCRIPTION OF DRAWING (S) - The figure shows the flowchart of the 
service issuing method. 

Service issue system (1110) 

Identification information (1130) 
Private key (114 0) 

Encrypted data (1160) 
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Abstract (Basic) : US 6282651 Bl 

NOVELTY - Memory e.g. smart card, holds data encrypted by algorithm 
unique to user in one part of memory and encrypted key in another 

Key encrypted using master algorithm. Card put into Digital 
Signal Processor (DSP) device e.g. cash machine. User inserts master 
key (41) e.g. Personal Identification Number (PIN). Key on card 
decrypted using master algorithm (43) . Compared reinserted PIN .(45). 
If match, data decrypted (51) . 

DETAILED DESCRIPTION -Method may be used to protect data in other 
types of memory e.g. Electronically Programmable Read Only Memory 
(EPROM), masked Read Only Memory (ROM) , compact disk (CD) or floppy 
disk which can be read using a processing unit e.g. DSP which contains 
the master algorithm. 

USE - As a security system for protecting data held in a memory 
unit (claimed) e.g. EPROM, CD or smart card. 

ADVANTAGE - Since data and key in memory are encrypted using 
different algorithms it cannot be deciphered without the master 
algorithm and master key e.g. (PIN) . 

DESCRIPTION OF DRAWING (S) - Drawing shows a flow chart of the 
data protection system applied to a smart card. 

User inserts key (PIN) (41) 

Key decrypted (43) 

Inserted key compared to decrypted key (45) 
Data decrypted (51) 
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Method of establishing secure communications link by encrypting user 
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Abstract (Basic): EP 1079565 A2 

NOVELTY - Method consists in transmitting a first public key 
corresponding to the first private key from the first to the second 



station, receiving it,^Tlong with user authorization iiSWrmation from 
the user of the second station, determining a shared electronic key 
from the first public and second private keys , or from the second 
public key corresponding to the first and second private keys , 
encrypting the user authorization information using the shared key 
, and transmitting the encrypted information and second public key 
from the second station to the first. These are received , the key is 
found from the second public and first private keys / user 
authorization information is decrypted and registered against stored 
data. If the user of the second station is authorized a secure 
communication session is initiated between the two stations. 

USE - Method relates to cryptographic systems providing secure 
communications using an insecure network. 

ADVANTAGE - Method u'ses* authorisation "or bi^ortletric * information 'to 
establish a secure communications link. 

DESCRIPTION OF DRAWING (S) - The figure shows a flow chart of the 
method. 

pp; 10 DwgNo 2/3 

Title Terms: METHOD; ESTABLISH; SECURE; COMMUNICATE; LINK; USER; 

INFORMATION; SHARE; ELECTRONIC; KEY 
Derwent Class: W01 

International Patent Class (Main) : H04L-009/08 
International Patent Class (Additional) : H04L-009/32 
File Segment: EPI 



30/5/18 (Item 12 from file: 350) 

DIALOG (R) File 350: Derwent WPIX 

(c) 2004 THOMSON DERWENT. All rts. reserv. 



first data stream at 
stream at second level of 



013596527 **Image available** 
WPI Acc No: 2001-080734/200109 
XRPX Acc No: N01-061467 

Configurable encryption/ decryption method' for irruXtiple services support 

includes utilizing of common memory to encrypt 
first level of encryption and to second data 

encryption 

Patent Assignee: GEN INSTR CORP (GENN ) 
Inventor: QIU X; SPRUNK E J 

Number of Countries: 094 Number of Patents: 003 
Patent Family: 

Kind Date Applicat No Kind Date Week 
Al 20001221 WO 2000US15944 A 20000609 200109 B 
A 20010102 AU 200054790 A 20000609 200121 
Al 20020424 EP 2000939752 A 20000609 200235 
WO 2000US15944 A 20000609 



Patent No 
WO 200077972 
AU 200054790 
EP 1198919 



Priority Applications (No Type Date) : US 2000587932 A 20000606; US 99138919 

P 19990611 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 

WO 200077972 Al E 30 H04L-009/00 

Designated States (National) : AE AG AL AM AT AU AZ BA BB BG BR BY CA CH 
CN CR "CU CZ DE DK DM DZ EE ES FI GB "GD GE GH ' GM "HR HU ID'IL IN" IS' JP KE 
KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO 
RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW 
Designated States (Regional) : AT BE CH CY DE DK EA ES FI FR GB GH GM GR 
IE IT KE LS LU MC MW MZ NL OA PT SD SE SL SZ TZ UG ZW 

AU 200054790 A H04L-009/00 Based on patent WO 200077972 

EP 1198919 Al E H04L-009/00 Based on patent WO 200077972 

Designated States (Regional) : AL AT BE CH CY DE DK ES FI FR GB GR IE IT 
LI LT LU LV MC MK NL PT RO SE SI 



Abstract (Basic) : WO 200077972 Al 

NOVELTY - Method includes storing a first set of encryption 
key associated with a first data stream . Encrypting a first 
data stream having first level of encryption, storing a second set 



of encryption key assolfated with a second data stream WRicryp ting the 
second data stream having a second level of encryption, utilizing a 
common memory to encrypt first data stream at first level of 
encryption and to encrypt second data stream at second level of 
encryption . 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for a 
cryptography circuit. 

USE - Multiple services support such as cable company supply 
different services e.g. cable programs, subtitles, foreign language 
audio tracks, an internet connection, audio programs, pay-per-view 
channels, a programming guides etc. to different customers. 

ADVANTAGE - It allows encryption system to provide several services 
encrypted at a low level, of. encryption while also providing a. high . . 
level of encryption when only a few services are transmitted to a 
customer. The circuitry is configured so that the same circuitry or 
integrated circuit is utilized to accomplish both type of encryption. 

DESCRIPTION OF DRAWING (S) - Drawing shows a flow chart illustrating 
the transmission and receipt, respectively, of two sets of services to 
a customer at different levels of encryption. 
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Abstract (Basic) : WO 20001W37 Al 

NOVELTY - Method enhances a password by irreversibly encrypting it 
after it is entered using a hash operation., and an additional step of 
using an encrypted stored key (NEPKEY) to encrypt the 
irreversibly encrypted user password (HASH) , using a public key 
encryption algorithm. In an additional step an encrypted second 
stored key (UPEK) is decrypted using the decrypted first stored key 
(NEPKEY) . 

DETAILED DESCRIPTION - An independent claim describes a data 
communication system. 

USE - As a method for password enhancing developed b entering a 
user "password and irreversibly ericfyp ting "the user "password. 

ADVANTAGE - Provides for secure password handling by enhancing the 
password . 

DESCRIPTION OF DRAWING (S) - The drawing shows a functional flow 
diagram illustrating the operation of the method, 
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Abstract (Basic) : US 6035039 A 

NOVELTY"- The method* involves requesting,' 15y *a 'user/ to become a 
subscriber in a communication system. A first security key is 
generated using a first data encryption algorithm having two input 
signals generated by respective two random number generating methods. 

DETAILED DESCRIPTION - A second security key is generated using a 
second data encryption algorithm having third and fourth input 
signals, the third input signal includes the first security key 
and the fourth input signal includes data from one of the transmit and 
receive frequencies utilized by the mobile communication system. A 
verification is made so that the mobile communication system is 
authorized to utilize the communication system using the second 
security key. An INDEPENDENT CLAIM is included for a fraud prevention 
system. 

USE - For fraud detection and user validation system. 
ADVANTAGE - Detects presence of unauthorized mobile telephone 
in efficient manner. 



J^^JG(S) - The figure shows a dia^^i 



DESCRIPTION OF DRJwxNG.(S) - The figure shows a diagWm illustrating 
an overview of the satellite network system, 
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Abstract (Basic) : JP 2000004223 A 

NOVELTY - The encryption sentence of a communication device is 
decoded by an encryption decoder (19) to obtain an n-bit encryption 

key . A dummy random-number series is obtained to input the n-bit 
encryption key in a dummy random-number generator (21) . A decoding 
device (19) obtains a communication signal by performing OR operation 
of dummy random-number series and encryption sentence of the 
communication device. ■ • • •» 

DETAILED DESCRIPTION -The disclosure key encryption device 
(11) of an encryption apparatus (7) produces a predetermined 
encryption key by performing the encryption of another encryption 

key with the disclosure key, based on a public - key crypto 
system. A dummy random-number series is obtained to input the output 
value of the bits of an n-step linear feedback shift register into a 
bent function, and to input the n-bit encryption key of the 
communication signal into the dummy random-number generator. The 
encryption apparatus obtains the encryption sentence by applying the 
exclusive OR operation to the dummy random-number series and 
communication signal. The communication device performs the 
communication of the encryption key and the encryption sentence. 

USE - For use in providing communication security in communication 
network . 

ADVANTAGE - Improves safety of data communication in communication 
network. Ensures high-speed encryption and authentication system. 

DESCRIPTION OF DRAWING (S) - The figure shows the block diagram of 
an encryption and authentication system. 

Encryption apparatus (7) 

Disclosure key encryption device (11)- - ■ • 

Decoding device (19) 

Encryption decoder (19) 

Dummy random-number generator (21 
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Abstract (Basic) : EP 969667 A2 

NOVELTY - Data of a broadcast program is scrambled with a scramble 
key updated in a short period. The scramble key is encrypted with a 
first key assigned to the subscriber terminal. The first key is 
encrypted with a first master key set in the subscriber terminal. 
A central station generates a second key - encrypted scramble key 
by encrypting the scramble key with a second key different from the 
first key and changeable in an interval shorter than a update interval 
of the first key , generates an encrypted second key by 
encrypting the second key with a second master key which has 
been commonly issued to subscriber terminals of the system, and 
broadcasts the second key - encrypted scramble key and the 
encrypted second key together with the scrambled data of the 
program, the first key - encrypted scramble key and the encrypted 
first key in a multiplexed manner. 

DETAILED DESCRIPTION -When a broadcast program is^to be stored, 
the subscriber terminal stores the scrambled data of the broadcast 
program and the second key - encrypted scramble key ; decrypt the 
encrypted second key with the second master key into the 
second key, which is added to a stored program second key list. If the 
stored program is to be executed, the second key - encrypted 
scramble key is decrypted with a corresponding one of the second keys 
in the stored program second key list into a decrypted scramble key. 
The scrambled data of the broadcast program is unscrambled with the 



i ^Independent claims are inciudeo^^>i 



decrypted scramble keylKNDE PENDENT CLAIMS are includedwbr a station 
for broadcasting a program, and a subscriber terminal. 

USE - For enhancing security of broadcast program stored for 
subsequent use in subscriber terminal in a pay broadcasting system. 

ADVANTAGE - Provides enhanced security against illegal misuse. 

DESCRIPTION OF DRAWING (S) - The figure shows a schematic block 
diagram of a subscriber terminal. 
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Abstract (Basic) : CN 1220459 A 

NOVELTY - An extraction circuit (11) obtains the watermark 
information from the encrypted and then decoded multimedia data. A disk 
key acquisition unit obtains a disk key based on a partial master 
key . The obtained disk key is used in a fourth decoding unit for 
decoding multimedia transmitted by a fourth transmitter. DETAILED 
DESCRIPTION - An encryption circuit (4) has a first encryption unit 
that encrypts the disk key of a decoding circuit (5) which is 
connected to the encryption circuit via a CPU bus (B) , using the disk 



key itself. A first tr^Rmitter transmits the encrypte^P di s k key. A 
second encryption unit encrypts the disk key using a master 
key • A second transmitter transmits the encrypted disk key . A 
third encryption unit encrypts multimedia data in which an electronic 
watermark information which is a part of the master key is 
embedded. A third transmitter transmits the encrypted multimedia data. 
A first and second decoding unit individually decodes the two 
encrypted disk keys - A third decoding unit decodes the encrypted 
multimedia data. 

USE - For preventing copying contents of recording medium e.g. 
floppy disk, CD, DVD. 

ADVANTAGE - Illegal selling of copies is prevented. Enables 
copyright to be protected more firmly. DESCRIPTION OF DRAWING (S) - 
The drawing shows the block diagram of the copy prevention apparatus. 
(4) Encryption circuit; (5) Decoding circuit; (11) Extraction circuit; 
(B) CPU bus. 

JP 11232779 A 

NOVELTY.- An extraction, circuit. (11) -obtains .the -watermark- . . 
information from the encrypted and then decoded multimedia data. A disk 
key acquisition unit obtains a disk key based on a partial master 
key . The obtained disk key is used in a fourth decoding unit for 
decoding multimedia transmitted by a fourth transmitter. DETAILED 
DESCRIPTION - An encryption circuit (4) has a first encryption unit 
that encrypts the disk key of a decoding circuit (5) which is 
connected to the encryption circuit via a CPU bus (B) , using the disk 
key itself. A first transmitter transmits the encrypted disk key. A 
second encryption unit encrypts the disk key using a master 
key . A second transmitter transmits the encrypted disk key - A 
third encryption unit encrypts multimedia data in which an electronic 
watermark information which is a part of the master key is 
embedded. A third transmitter transmits the encrypted multimedia data. 
A first and second decoding unit individually decodes the two 
encrypted disk keys . A third decoding unit decodes the encrypted 
multimedia data. 

USE - For preventing copying contents of recording medium e.g. 
floppy disk, CD, DVD. 

ADVANTAGE - Illegal selling of copies is prevented. Enables 
copyr-ight to be protected more firmly. DESCRIPTION .OF . DRAWING (S) 
The drawing shows the block diagram of the copy prevention apparatus. 
(4) Encryption circuit; (5) Decoding circuit; (11) Extraction circuit; 
(B) CPU bus. 
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Transferring method of disk key and media key from media storage to 
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Abstract (Basic) : US 5923754 A 

NOVELTY - A first random secure transfer key is generated with an 
uniqueness factor derived from a phase lock loop circuitry. A second 
transfer key is formed by combining the first key with an output device 
key. The second key is used to encrypt a disk key and a media key, 
so as to form a third secure transfer key. 

DETAILED DESCRIPTION - The first secure transfer key is generated 
during power-ON state of a computer system. The first secure transfer 
key is deleted subsequently after the generation of second secure 
transfer key . The encrypted data key and jnedia key are recovered 
from "the' third secure transfer key "in the output device. An INDEPENDENT 
CLAIM is also included for the copy protection apparatus. 

USE - For transferring disk key and media key from DVD disk, 
CD-ROM, magnetic tape, magnetic floppy disk to output device in 
computer system, for personal and commercial audio systems. 

ADVANTAGE - Enables decrypting data only by using recipient's 
private key / since the knowledge of key used for encryption is 
insufficient to allow messages to be decrypted. 

DESCRIPTION OF DRAWING (S) - The drawing shows the flowchart 
explaining negotiating of device keys during power-ON of computer 
system. 
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Abstract *"(Basic) : JP 11088317 A 

NOVELTY - An additional key is generated using the master key 
and execution data. Then specific authentication data is generated by 
encrypting the data using master and additional keys . The 
authentication data is forwarded to the receiving side which is then 
decoded and additional encryption key is generated. The received 

message is decoded by additional encryption key . DETAILED 
DESCRIPTION - The user confidential data or master key and 
execution key are registered in key management unit. During 
communication, the encrypted data is transferred to the receiving side 



rated using the dummy master t. 



user. A dummy key is ^^erated using the dummy master ^Ptey based on 
which confidential data is erased. 

USE - For data communication system. 

ADVANTAGE - The safety of data transmission is ensured irrespective 
of key management condition variation, thereby raises encryption 
efficiency. DESCRIPTION OF DRAWING (S) - The figure shows the block 
diagram of encryption key management system. 
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Abstract (Basic) : WO 9909700 Al 

NOVELTY - System uses a center for secure distribution of 
encryption keys , certificates or permits to users at different 
locations. It enables change of the public - private key pair using 
means, for storing the . encryption - key. pair, with .two . or more 
additional encryption key pairs, means for setting up a new key 
pair which comprises a new private key and the corresponding 
public key for the center, and means for preparing an announcement 
of the new public key for the center. The announcement includes 
copies of a message disclosing the new key, its number equaling the 
number of additional key pairs for reliable key dissemination. Each 
copy of the message is signed or encrypted with the pairs private 
key and the announcement is communicated to the parties . 

USE - System is for reliable transfer of an encryption key . 

ADVANTAGE - System provides recovery in case the private key is 
compromised and is more secure and flexible than systems using a single 



• t 



encryption key 

DESCRIPTION OF DRAWING (S) - The figure shows 

secret keys (SK) 
public keys (PK) 

key pair setting means (KIPS) 

communication means (CM) 
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Abstract (Basic) : EP 891053 A 

The apparatus comprises a hashing unit (100) to calculate a hash 
value on the basis of a hash function using a key recovery information 
text serving as information necessary for performing key recovery. A 
concatenating unit concatenates the hash value from the hashing unit to 
the key recovery condition. A condition information encryptor encrypts 
a concatenating result from the first concatenating unit by using an 
encryption „ key - The apparatus .hajs a random generator , ( 4 00 ) . to. , 
generate an arbitrary random key serving as the first encryption key 
, a random key encryptor (310) encrypts the random key from the 
random generator by using a private key serving as a second 
encryption key , and a second concatenating unit concatenates an 
encryption result from the condition information encryptor to an 
encryption result from the random key encryptor - 

The condition information encryptor encrypts the concatenating 
result from the first concatenating unit by using the random key from 
the random generator. The apparatus has an input to receive the key 
recovery information text and outputs the received key recovery 
information text to the hashing unit. A second input receives the key 
recovery condition and outputs the key recovery condition to the first 



concatenating unit. A^p.rd input receives the priv^^ key and 
outputs the private key to the random key encryptor . 

ADVANTAGE - Adds key recovery condition having relatively complex 
contents to key information without registering key recovery condition 
in third party organisation. 
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Abstract (Basic) : JP 10276184 A 

The method entails setting up a public system information and a 
secret and random system number at the time of system construction in a 
key management apparatus or a key registration apparatus. A user 
apparatus, the key registration apparatus, or the key management 
apparatus generates a public user information and confidential user 
information at the time of subscription by the user. The public system 
and user information are exhibited after a master key indicating a 
specific communication person is generated. The system number and 
confidential user information or the master key are registered to 
one or more key management systems. 

When performing encryption, a calling side user apparatus generates 
a session encryption key . Additional data are added when the data 
contained in a session key are encrypted using the session 
encryption key . The additional data are transmitted to a receiving 
side user apparatus which generates another session encryption key 
. And'ther session key is* produced when the additional data are decoded 
using the session encryption key . 

ADVANTAGE - Unauthorised person cannot read message. 
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Abstract (Basic) : WO 9835472 A 

The electronic network includes a communications link. A source 
information-processing- system at -a "first end of the communications link 
includes a master encryption key / at least one secondary 
encryption key , a first memory which stores data units and the 
master and the at least one secondary encryption key and an 
encryption engine. The encryption engine selectively encrypts the data 
units to produce encrypted data units using at least one of the 
secondary encryption keys . 

The encryption engine encrypts the secondary encryption key 
with the master encryption key to produce at least one encrypted 
key . An archive server information processing system at a second end 
of the communications link includes a second memory and is in 
communication with the source information processing system. The 
archive server information processing system receives and stores the 
encrypted data units and the encrypted keys in the second memory. 

USE - For computer data backup system. 

ADVANTAGE - Eliminates access to data by archive server. Provides 
source organisation with assurances- of access control and privacy while 
relieving source organisation of archive cataloging and physical 
storage duties. Effective deletion of information stored on archive 
tapes is achieved without physical modification to magnetic tape. 
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Cryptographic key managing method e.g. for two parties in communications 
networks - transporting, in different degrees of security strength, 
symmetric key encrypted using asymmetric encryption technique and 
transporting ciphertext derived from plaintext encrypted under 
symmetric key 

Patent Assignee: NORTHERN TELECOM LTD (NELE 
(ENTR-N) 

Inventor: VAN OORSCHOT P C; WIENER M J 
Number of Countries: 002 Number of Patents: 
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Priority Applications (No Type Date) : US 96698074 A 19960815 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 
CA 2213096 A 28 H04L-009/30 
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Abstract (Basic) : CA 2213096 A 

The method involves encrypting a cryptographic key of 
cryptographic strength commensurate with the degree of trust of the 
environment in which the party is located, by using a high trust 
encryption public key of the party to generate a party encrypted 
cryptographic key . 

The cryptographic key is encrypted using a low trust 
encryption . public key of the second party v to generate a . second 
party encrypted cryptographic key - The two parties encrypted 
cryptographic keys are cbncatentated . The second party, upon 
reception of the concatenated data is decrypted to recover the 
cryptographic key. 

ADVANTAGE - Establishes shared secret cryptographic keys 
between two parties over communication network which spans both 
high-trust and low-trust environments. Ensures secure data transfer 
which originates in high-trust environment and for which intended 
recipients are either in high-trust environment or low-trust 
environment . 
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Fraud detection and user validation system for mobile earth terminal 
satellite communication - judges valid subscriber by subsequent 
authentication by comparing first and second components of respective 
security keys generated by central controller and mobile communication 
system 
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Number of Countries: 001 Number of Patents: 001 

Patent Family: 
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Abstract (Basic) : US 5748742 A 

The system includes a central controller WKich 'receives a' first 
input signal from a mobile- communication system. A first security 
key having a first component is generated by the central controller 
using a data encryption algorithm . Using the first input signal, a 
random number generator generates a second input signal in the central 
controller. A third input signal is generated in accordance to the 
receipt of the first input signal, by the central controller. 

The third input signal is then transmitted to the mobile 
communication system. A second security key having a second component 
is generated in the mobile communication system using the data 
encryption algorithm - When communication is initiated, the mobile 
communication system verifies valid subscriber by subsequent 
authentication by comparing the first and second components of the 
respective security keys. 

USE - For voice, data and facsimile transmission between mobile 
earth terminals and feeder link earth stations. 

ADVANTAGE - Offers low cost, simple and reliable validation system. 
Enables easy rejection of unencrypted access. Identifies valid key 
stream reliably. 
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Software protective device e.g. for CPU control program - generates 
encrypted key "based on predetermined "encrypted key "parameter, using which 
encrypted program which stipulates signal or information processing 
algorithm is decoded 
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Abstract (Basic) : 



JP 10055273 A 



The device include^^f irst encipherment unit (20) ^J^n encodes an 
information transferred between CPU and memory via data bus. A first 
encryption key generator outputs an encrypted key, based on a 
predetermined encrypted key parameter. A first decoder .decodes the 
encrypted information using the encrypted key. 

A memory (24) is provided in which a program stipulating a signal 
processing or an information processing algorithm is encrypted arid 
stored. The encrypted program is then decoded by a second decoder using 
a second encrypted key which in turn is output by a second encryption 
key generator, based on a predetermined encrypted key parameter. 

ADVANTAGE - Improves software protectivity, efficiently. 
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Access key securing method e.g. for computer - creating two encrypted 
versions of access key first using key formed with user password and 
second formed using public key from public - private key pair 
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Abstract (Basic) : WO 9742732 A 

The method involves encrypting an access key (232) with a first 
encryption algorithm to form a first encrypted version (236) . The 
access key is encrypted with a second, asymmetric encryption 
algorithm to form a second encrypted version of the access key (270) . 
A public key (266) from a public - private key pair is 
obtained for the second encrypted access key version. 

Preferably, the first encrypted version of the access key is 
decrypted with a decryption algorithm. The second encrypted version of 
the access key is decrypted with an asymmetric decryption algorithm 
using a private key from a public - private key pair. 

ADVANTAGE - Allows' computer access even when "for got tfen password. 



d protection to data without s^^m 



Allows to override password protection to data without s^hificantly 
compromising data security. 
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Secure communication method with cross-linked cryptographic codes - uses 
secure header message to identify operations centre and authenticate 
cryptographic control unit before communication of secure requests or 
usage reports to which operations centre responds 
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Abstract (Basic) : WO 9642154 A. 

The cryptographic communication method involves encrypting a 
message under a first cryptographic code key , using a cipher 
block chaining mode which has a first initial vector input, to form two 
encrypted data blocks. The encrypted data blocks are encrypted under a 
second cryptographic code key using the cipher block chaining mode with 
a second initial vector input for the first packet to form the first 
authentication code. The first authentication code is appended to the 
encrypted data blocks. 

The second encrypted data blocks are encrypted under the second 
cryptographic code key using the cipher block chaining mode having a 
third initial vector input for the second packet to form the second 
message authentication code. One of the first encrypted data 
blocks of the first packet is selected as the third initial vector. 
The second authentication code is appended to the second encrypted data 
blocks. The message is sent to the receiving terminal where it is 
encrypted under the second cryptographic code key using the cipher 
block chaining mode and the third vector input. A second message 
authentication code is calculated. One of the encrypted data blocks 
of the first packet is* selected a's the third ^vector input. ' 

USE/ADVANTAGE - Provides mechanism to allow remote cryptographic 



control unit in user terminal and cryptographic operations centre to 
accurately authenticate and cross check message. Protects against 
reordering of packets within message. 
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Secured communication encryption system with users being associated with 
public and private encryption keys - generating second user 
session encryption key by encrypting session key with combination 
with public encryption key and central authority key 
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Abstract (Basic) : US 5557678 A 

The method involves generating a first user session encryption 
key by encrypting a session key with a combination of the public 

encryption key and the central authority key portion associated 
with a first user. A second user session encryption key is 
generated by encrypting a session key with a combination of the 
public encryption key and the central authority key portion 
associated with a second user. The first user session encryption key 
is decrypted by applying the private user key portion of the first 
user to obtain a common session encryption key available to the 
first user. 

The method also entails" decrypting the second' usef session' 
encryption key by applying the private user key portion of the 
second user to obtain the common session encryption key available 
to the second user. The common session encryption key is used for 
encrypting and decrypting a first message exchanged during the session. 

USE/ADVANTAGE - In split private key crypto-sys tern for session 
key distribution. Facilitates confirmation of user's authorised access 
to another user of system by central intermediary each time 
communication system is initiated. 
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Printed document validation system with image information and data - 
receives document identification data and parts of encoded data from 
first processor and accesses associated image data in memory, forms 
second processor encoded data, compares data and produces validation 
signal if coincidence exists 
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Abstract (Basic) : EP 729120 A 

The validation system includes several printed documents (12 and 
10) each having data recorded on them representing the image of the 
authorised user and document identification data. The data is read 
(22). A non reversible encryption algorithm for encoding parts of the 
data is provided. A processor (26) encodes the read data with the 
algorithm (32) . The image (28) of the user is displayed (30) . A memory 
■ ■ store has data corresp. <to -the image data -sto-red -in it.* • 

A second processor (34) receives the document identification data 
and parts of the encoded data form the first processor, and accesses 
the associated image data from memory. The second processor processes 
the associated image data and parts of the received data to form 
second processor encoded data . Parts of the received encoded data 
is compared with the second processor encoded data to provide a 
validation signal if a correspondence is detected. 

USE - For validating image data representing authorised user of 
several documents e.g. for signature, fingerprint or photographic data, 
where image data and document identification data is read and encoded 
for comparison against previously stored image data. 
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Abstract (Basic) : WO 9605673 A 

The method for controlling an emergency decrypting user's access to 
a secret encrypted by a file encrypting user in a data recovery field 
(DRF) , where the access to the message is controlled by an access rule 
(AR) defined by a rule defining user involves the AR defining user 
defines an access rule to control access to the secret and sends the AR 
to a data recovery centre (DRC) . The DRC returns the access rule index 
(ARI) corresp. to the AR to the AR defining user. 

The file encrypting user retrieves the ARI and generates the DRF. 
The DRF has the ARI and the secret encrypted by a DRC public key - 
The emergency decrypting user sends the DRF to the DRC. The DRC 
presents a challenge to the emergency decrypting user with the AR 
corresp. to the ARI in the DRF. The DRC sends the secret to the 
emergency decrypting user if the emergency user meets the challenge of 
the DRC. 

USE/ADVANTAGE - Prevents any party having modified hardware or 
software from communicating with unmodified equipment or preventing law 
enforcement * from gaining* authorised* access' to" Communication. " 
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Abstract (Basic) : EP 695997 A 

The method involves attaining access by the predetermined user to 
the unencrypted electronically-defined information. The stored 
encrypted second key is accessed from a network-connected 
apparatus of the predetermined user. The accessed encrypted second 
key is decrypted using the first key of the predetermined user at the 
apparatus of the predetermined user to recover the second encryption 
key - 

The stored encrypted information from the network-connected 
apparatus of the predetermined user is accessed. The accessed encrypted 
information is decrypted using the recovered second encryption key 

to recover the electronically-defined information for examination of 
the recovered information by the predetermined user. 

USE/ADVANTAGE - E.g. for electronic newspaper. Provides secure 
access to information accessible to be shared among dynamically 
changing, set of authorised .users . on, network . having , server . . 
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Abstract (Basic) : US 5343527 A 

The method for reusing software components that maintains the 
integrity and authenticity of the software components involves 
generating a software component record by encrypting a plaintext 
representation of a software component using a first cryptographic 
algorithm using first key - The encrypted software component is 
hashed to generate a hash digest . The hash digest and the 
first key are encrypted using a second cryptographic algorithm 
with a second key. 

The second cryptographic algorithm is of a public key type and the 
second key is the private key associated with at least one public key. 
The software component record consists of the encrypted software 
component, the encrypted, hash digest. , ,and the ( encrypted . f.irst 
key . The software component record is stored in a reuse library. 

USE/ADVANTAGE - Protection against unauthorised modification of 
software. Notifies user if software has been modified in any way. 
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Abstract (Basic) : EP 600646 A 

The method involves scanning a document to produce a signal 
representative of an image of at least a portion of the document. A 
second signal is encrypted comprising a representation of the image and 

derived from the first signal. A coded representation of the second 
encrypted signal is incorporated with the document. The coded 
representation of the second signal is then read from the document. 

The method further involves decoding the second signal and 
decrypting the decoded signal. The decrypted second signal is input to 
a display to display the representation of the image. Finally the 
document is compared with the displayed image to authenticate the 
document . 

ADVANTAGE - Allows production of document secure against tampering 
and alteration and is easily applied to existing documents or those 
produced in predefined format. 
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Abstract (Basic) : US 5142578 A 

The apparatus distributes an initial Data Encryption 
Algorithm (DEA) key - encrypting key to encrypting a key 

record using a public key algorithm and a public key belonging to the 
intended recipient of the key record. The apparatus recovers the 
distributed key-encrypting key by the recipient by decrypting the 
received key record using the same public key algorithm and private key 
associated with the public key and re-encrypting the key-encrypting key 
under a key formed by arithmetically combining the recipient's master 
key with a control vector contained in the control information of the 
received key record. 

The type and usage attributes assigned by the originator of the 
key-encrypting key in the form of a control vector are 
. . cryptpgraphically coupler! tP the . key-encrypting key such that, the . . 
recipient may only use the received key-encrypting key in a manner 
defined by the key originator. 

ADVANTAGE - Enhances security. 
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Abstract (Basic) : CA 2056935 A 

A third party may validate that a communication is an authentic 
communication from a second parety sent with the authorisation of a 
first party. For example, the third party may be a postal service, the 



second party may foe a mK.ler, and the communication ma^e a postal 
indicia showing that a mail piece has been properly franked. The first 
party and the second party share an encryption key , or a series of 
keys. The first party also* has a second encryption key which the 
third party has the ability to decrypted. 

The first party encrypts a key shared with the second party 
with the first party's second key and transmits this to the second 
party. The second party then uses its copy of the key to encrypt 
information and appends its encrypted information to the message 
received from the first party and transmits all this to the third 
party. The third party may then decrypt the copy of the key 
encrypted by the first party and use this information to decrypt the 
information encrypted by the second party. The known technique of 
eliptical logarithms may be used to provide highly secure encryption of 
short messages. The second party may be a mailer and the apparatus of 
the subject invention may include a postage meter which prints the 
information transmitted to the third party, who may be a postal 
service, on a mail piece as a postal indicia. 

ADVANTAGE - Postal service does not need to maintain large data 
bank of keys for each mailer. 
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Abstract (Basic) : DE 3919734 C 

The arrangement for transmitting codes is intended for a number of 
subscriber stations (TLN A, TLN, B) , where a code is accep.ted for 
communication between sending and receiving stations. Coding equipment 
for the agreed code is provided in the stations which are given a 
recognition* code. The communication* system is" equipped ' with an 
arrangement for authenticating a subscriber in the coded transmissions. 

Depending on the desired degree of security in any transmission, 
the arrangement can adopt an appropriate checking response. There are 
two stages or grades of security. The first is intended for speech 
transmissions and employs a reduced scheme, while the second is more 
complicated and uses a central station (SMZ) for checking purposes. 

USE/ADVANTAGE - Improvement is security for subscriber without 
undue expense. Suitable for data processing systems. (9pp Dwg.No.2/5) 
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Abstract (Basic) : EP 385511 A 

A system includes a common file for storing public information in a 
position indicated by the receiving party identifying information. A 
transmitting subsystem is capable of reading the common file, 
generating random numbers and a cipher key, and storing secret 
information. The subsystem also generates a key distribution code and 
transmits this code together with information identifying the 
commu'nicating party. * " 

A receiving subsystem receives the key distributing code and 
identifies information, stores a constant and secret information and 
generates the same cipher key as the transmitting subsystem. 

USE/ADVANTAGE - For one way communication system. Avoids excessive 
overheads and improves security. 
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Abstract (Basic) : GB 2211643 A 

The system for conveying information for the reliable 



nb^f of documents (e.g. mail) inclu^^s 



authentication of number of documents (e.g. mail) includes a device for 
solving a set of polynomial equations to develop a string of characters 
and having a decryption key that, upon application to the string of 
characters, reveals not only a plain text message indicating the source 
of the authentication but, in addition, provides the decryption key for 
use with the information provided by the mailer. The solution of the 
set of polynomial equations requires the accumulation of individual 
documents, each having a random x, and the value f (x, ) of the 
polynomial associated withit. 

ADVANTAGE - Increased speed and efficiency. 
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Abstract (Basic) : DE 3841393 A 

At the authorised originating station (30) a public key 
generator (32) and a processor (34) are associated with nonvolatile and 
real-time memories (36, 38) and a communication interface (e.g. 
microcomputer card) (40), linked (54) to an addressing and franking 
machine (42) . This includes an encryption module (46) and nonvolatile 



memory (48) in which associated public key is fwred. 

The prepd. mail is delivered to an authorised post office (44) 
where a decryption module (56) operates with a keyboard or optical 
reader (58), and a communication interface (64) to the originating 
station (30) . Document authenticity is indicated visually or audibly 
(62) . 

USE/ AD VANTAGE - For verification of authenticity of paper 
documents or magnetic or optical discs. Does not require data-base 
large enough for decryption of all possible keys form different 
franking machines 
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Abstract "(Basic} : EP 179612 7K " * ** " " " ' '* ■ . . . 

Each of several receiver nodes has a unique address number, and a 
circuit (14) generates a common key. A circuit (12) encrypts the 
information to be distributed using the common key. A different 
individual key is generated for each receiver node, using a master 
key (20) and a circuit (22) using the Data Encryption Standard 
algorithm for encrypting the common key using the generated 
individual key for that receiver node. 

The encrypted information is distributed to all receiver nodes 
and the individualised encrypted common key for each node is 
distributed to that receiver node. 

ADVANTAGE - Only single master key must be stored and 
protected . 
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Abstract (Basic) : WO 8500491 A 



The information signal is scrambled and the scrambling technique 
used is identified. A number of identification signals (Tc) are 
generated, each representing information concerning a prospective user. 
A data block is produced by appending together a small number of 
information signals together with the encryptation key (P) . The whole 
block is encrypted (lb) with a distribution key (D) common to the group 
of users. This reduces the time to cycle around all the subscribers in 
a given data capacity by reducing the total number of bits to be 
transmitted. 

Apparatus receiving the scrambled signal has a decrypter (20) 
responsive to a user key signal (D) . This recovers the key signal (P) 



and the information re^^ing to its receiver. A second ^fe:rypter (23) 
responds to this key signal to descramble the information signal (A) . 

USE/ADVANTAGE - Enables scrambled television signal to be 
descrambled by authorised viewers only. System is secure but time to 
access each user is short 
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Abstract (Basic) : EP 68805 A 

A transaction terminal (10) transmits transaction information plus 
an encrypted PIN (personal identification number) to its associated 
acquirer station (12) . The PIN being encrypted uses a session key, KSI, 
extracted at the terminal and decrypted using a first master key - 
The acquirer station sends on the message, with KSI encrypted in a 
second master key to a network switch which routes the message to 
the appropriate issuer station (20T with KSI te'-e'ncrypte'd in a third " 
master key . 

To avoid errors messages are pref. accompanied by authentication 
codes compared from it. The data processor at the issuer station 
verifies the transaction and returns an authorisation code (or denial 
code) via the switch (16) and acquirer station (12) to the originating 
terminal. The acquire station appends to the chain message a new 
session key KS2 encrypted using the first master key for use as the 
session key 111 in the next transaction. 
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TITLE: Keys to the privacy-enabled enterprise 

AUTHOR: Borck, James R 

SOURCE: InfoWorld, v22 n37 p58(2) Sep 11, 2000 
ISSN: 0199-6649 

HOMEPAGE: http: / /www. infoworld. com 

RECORD TYPE: Review 
REVIEW TYPE: Product Analysis 
GRADE: Product Analysis, No Rating 

Enterprises engaging in e-commerce gain the advantages of automated 
information exchange and reduced costs, but these activities create many 
new security exposures that must be addressed. Corporate data assets have 
to be protected in new ways when companies build alliances with external 
business associates. Because there are more access points to corporate 
data streams , a supply chain gateway can quickly become one of the 
weakest links in the privacy chain. Glitches and security holes are no long 
headed off at the perimeter of the internal network, but now can move into 
online venues of businesses and their trading partners. New trust 
mechanisms are required that, are power fjul .and .easy Xo. use,. and may include 
firewalls, hashing mechanisms, encryption , public key infrastructure 
( PKI ) , digital certificates, and extranet virtual private networks 
(VPNs) . Hashing is based on a checksum process in which a sender delivers a 
message with an algorithm that allows the receiver to create a second hash 
upon receipt. Encryption protects text from prying eyes by converting it to 
unreadable characters; users encrypt and decrypt using unique keys. PKI 
allows distribution and management of encryption keys . Digital 
certificates authenticate users via digital 'fingerprints. 1 Extranet VPNs 
provide encryption, Pretty Good Privacy, PKI , and digital certificates to 
create a transmission path similar to that of a' private leased line. 
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Public Key Infrastructure ( PKI ) is becoming more popular as an 
identifier of users in e-commerce transactions. It also ensures that 



:ed illegally during transmissi^^. PKI uses 
very long prime numbers, which are called keys. Two keys are used: a 
private key accessible only to the document 1 s originator, and a public 

key , which is accessible to anyone. The two keys work in tandem, which 
means that a message scrambled with the private key can only be decoded 
with the public key ; the reverse is also true. The longer the string of 
digits in the keys, the more secure the process is.^ The user employs a 
digital signature to prove identity online, and public key cryptography 
makes sure that a document is run through a complex mathematical 
computation to output one large number, known as a hash . The original 
data and the hash cannot be separated, so that if either is changed, the 
hash does not match and the message .cannot be decoded. Users can be sure 
that the correct key is available to verify the signature in a trusted 
system, which creates the need for a certificate authority to verify online 
identity. A certificate authority, which is like a digital passport bureau, 
is a trusted entity that makes PKI work. Private keys are securely 
generated, and after the sender's identity is verified, the certificate 
authority sings the sender's public key with a private root key . 
The combined public key and signature of the certificate authority 
complete the sender's digital certificate. 
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OpenConnect Systems* OC : //WebConnect Web 3270 Server for Java is a product 
in its 1.2.2 Beta release that allows secure access to corporate legacy 
data; the' software allows authorized users anywhere on the globe to use a 
Java-enabled Web browser to gain access. An evaluation version makes 
encryption-secure Java data stream transfers between a Java-ready Web 
browser and an enterprise Web server over the public Internet or private 
intranets. OpenConnect President and CEO Stephen J. Clark says the software 
includes the widely used, industry-standard, powerful security technology 
of RSA Data Security. A licensing agreement extends RSA's encryption to 
Java applets to permit automated, unobtrusive exchange functions for 
encrypted data flows between end-users and the OC : //WebConnect Server. The 
new release also uses the patented Dif f ie-Hellman Public Key Exchange 
for secure encryption - key management and industry standard data 
encryption; this technology provides the best commercially available 
security . 

PRICE: $49 
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ViaCrypt f s ViaCrypt PGP (VPGP) Business Edition 4.0, a Windows electronic 
mail encryption package, provides the easiest to use interface for Pretty 
Good Privacy, the most popular encryption program available. Encryptor 
pastes encrypted text easily, and any task performed with free PGP's 
-command Line, can be done usi^ig ,a mouse .with. VPGP VPGP .and. freewa-re -PGP 
both use public key cryptography, a method that creates a public and 
private key . PGP uses a secret key algorithm , International Data 
Encryption Algorithm (IDEA), to encrypt the body of a message, and RSA 
for encryption of the message key. ViaCrypt offers users a paid service fo 
hard coding VPGP ' s options, corporate access, and certification keys. 
Laptop users can also temporarily carry overseas strong encryption tools 
without special paperwork. 

PRICE: $149 

COMPANY NAME: Network Associates Inc (613304) 
SPECIAL FEATURE: Screen Layouts Charts 

DESCRIPTORS: Computer Security; E-Mail Utilities; Encryption; File 

Security; IBM PC & Compatibles; Internet Security; Laptops; Mobile 
Computing; Network Software; Windows 

REVISION DATE: 20020330 
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-DIALOG (R).-File 256: Sof tBase.: Reviews, Companies &Pxods ~ - . 
(c)2004 Info. Sources Inc. All rts. reserv. 

00078703 DOCUMENT TYPE: Review 

PRODUCT NAMES: Company — RSA Security Inc (860107) 

TITLE: The Secret To Encryption 

AUTHOR: Schatz, Willie 

SOURCE: Information Week, v527 p74(2) May 15, 1995 
ISSN: 8750-6874 

HOMEPAGE: http: //www. inf ormationweek . com 

RECORD TYPE: Review 
REVIEW TYPE: Company 

Electronic commerce is the driving force behind the data security movement 
Encryption and authentication techniques are necessary to protect 
everything from electronic mail to financial transactions. RSA sells 
products based on a patented encryption algorithm developed in 1977. RSA 1 s 
■Public .Key. Cryptosystem uses, two mathematical - keys . to. .encrypt ■ and . 
decrypt computer data . RSA's algorithm has been diligently tested and 



was considered unbreakable^Tntil a 600-member team of Bell ^Rmuni cations 
Research scientists and mathematicians broke it last year. Public Key 
Cryptosystem' s competitors include Cylink ! s Dif f ie-Hellman and MIT ! s 
Kerberos. A description of RSA's major clients and the way they use the 
'system is" included. 

COMPANY NAME: RSA Security Inc (398047) 

DESCRIPTORS: Computer Security; Encryption; Software Marketing 
REVISION DATE: 20020703 
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00078588 DOCUMENT TYPE: Review 

PRODUCT NAMES: Pretty Good Privacy (835072) 

TITLE: PGP: Pretty Good Privacy 

AUTHOR: Collinson, Peter 

SOURCE: SunExpert, v6 n6 p28(5) Jun 1995 
ISSN: 1053-9239 

HOMEPAGE : http : //www . cpg . com 

RECORD TYPE: Review 

REVIEW TYPE: Product Analysis 

GRADE: Product Analysis, No Rating 

A UNIX consultant who sells software via the Internet, obtaining payment 
via credit card company connection, protects customer privacy with the 
Pretty Good Privacy (PGP) program, which secures e-mail via encryption. PGP 
uses the RSA Data Security public key algorithm for encryption , and 
the MD5 message digest algorithm for digital signatures. Keys are 
stored in 'keyrings' associated with user IDs; each PGP user must create 
public and private keys to which only UNIX superusers have 
unrestricted access. PGP also helps users establish trust in the e-mail 
system or in the World Wide Web. This is accomplished using a key 
'fingerprint,' which generates the MD5 digest of a key on request. The 
program also allows keys to be signed, or certified as part and parcel of 
the ID in question. PGP can be obtained via anonymous FTP. 

COMPANY NAME: Vendor Independent (999999) 

DESCRIPTORS: Computer Security; E-Mail Utilities;. Encryption; UNIX 
'REVISION DATE: '20000228 ■ • - ............. 
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DIALOG (R) File 256 : Sof tBase : Reviews , Companies &Prods . 
(c)2004 Info. Sources Inc. All rts. reserv. 

00070303 DOCUMENT TYPE: Review 

PRODUCT NAMES : ViaCrypt PGP Windows (532771) 

TITLE: ViaCrypt PGP Brings 'Pretty Good Privacy 1 to Windows Systems 

AUTHOR: Peschel, Joe 

SOURCE: InfoWorld, vl6 n44 pl35(l) Oct 31, 1994 
ISSN: 0199-6649 

HOMEPAGE: http: //www. infoworld. com 

RECORD TYPE: Review 

REVIEW TYPE: Product Analysis 

GRADE: Product Analysis, No Rating 



ViaCrypt PGP (Pretty Good Privacy) for Windows encrypts files using public 
key and conventional encryption methods. Public key methods use 



the RSA algorithm, while conventional mode relies on International Data 
Encryption Algorithm (IDEA) . The public key system uses two keys , 
public and secret to encrypt and decrypt files. When keys are used in 
•combination with conventional mode, operations- move along faster.- Th-e IDEA 
conventional mode can be used by itself, a viable method for encrypting 
plain, unencoded text. The user simply clicks the Key Management button to 
begin creating a set of public and private keys . Three security and 
speed selections are available, and speed is inversely proportional to data 
security. Management functions allow the user to handle several sets of 
keys, and the same menu allows keys to be copied, added, or removed. 



COMPANY NAME: Network Associates Inc (613304) 

DESCRIPTORS: Encryption; File Security; IBM PC & Compatibles; Windows 
REVISION DATE: 20020321 



Set Items Description^ jF 

51 4 095 (ENCRYPT? OR ENCODE? OR CIPHER OR CIPHERS OR SECURITY) (2N) 

(KEY OR KEYS) 

52 3892195 FIRST OR 1ST OR PRIME OR PRIMARY OR INITIAL OR MAIN OR ORI 

GINAL 

53 1821453 SECOND OR 2ND OR ANOTHER OR ADDITIONAL 

54 12542 (BASE OR SHARED OR PRIVATE OR LOCAL OR MASTER OR PUBLIC) (2 

N) (KEY OR KEYS) OR PKI 

55 16966 (DATA OR INFORMATION) () (STREAM? OR STRING? OR SEGMENT? OR 

PIECE? OR PART? OR CHUNK? OR BLOCK?) 

56 7624 (DATA OR INFORMATION) () (PART? OR SEGMENT? OR PORTION? OR P 

IECE? OR MESSAGE ( )'SPECIFIC' OR SIGNATURE "OR IDENTIF? OR TD) ■ 

57 45354 (HASH? OR KEY () SPLITTING OR CHECKSUM OR ONE () WAY () FUNCTION 

OR ALGORITHM?) (2N) (DATA OR INFORMATION OR DIGEST? OR FINGERPR 
INT? OR FINGER () PRINT?) 
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S14 
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S14 AND SI 
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14 
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S17 
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S18 


16 
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16 
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14 
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20/5/1 ' (Item 1 from f^l: 8) 

DIALOG (R) File 8 : Ei Compendex ( R) 

(c) 2004 Elsevier Eng. Info. Inc. All rts . reserv. 

02889371 E.I. Monthly No: EI9004039865 

Title: Intuition, perception, and secure communication. 

Author: Arazi, Benjamin; Dinstein, Its ! hak; Kafri, Odeci 

Corporate Source: Ben Gurion Univ, Dep of Electr & Comput Eng, Beer 
Sheva, Isr 

Source: IEEE Transactions on Systems, Man and Cybernetics v 19 n 5 
Sep-Oct 1989 p 1016-1020 
Publication Year: 1989 
CODEN: ISYMAW ISSN: 0018-9472 
Language: English 

Document Type: JA; (Journal Article) Treatment: A; (Applications); T; 
(Theoretical); X; (Experimental) 
Journal Announcement: 9004 

Abstract: The possibility of integrating human visual intelligence into 
the process of encrypting sensitive information by presenting certain 
visual information to the recipient's eye is discussed. This adds a new 
dimension- to the cryptocomplexity of such a • process-. Two implementations ■ 
that are based on this principle are described. The first shows how keys 

used for encryption can be randomly generated by the transmitter, 
without the necessity of exchanging them with the legitimate recipient. The 
keys are 'embedded' in a master key and are recovered from it by the 
intelligence of the legitimate recipient after he or she uses the master 
key . No human intelligence can be helpful to a user who does not possess 
the master key . The second implementation concerns the possibility of 
creating a secret connection between a numerical key and a specific image 
(e.g., a face). Such a scheme can be used, for example, in validating the 
identity of the users of credit cards. 5 Refs. 

Descriptors: ^CRYPTOGRAPHY; DATA PROCESSING — Security of Data 

Identifiers: HUMAN VISUAL INTELLIGENCE; LINEAR ENCRIPTION TRANSFORMATION; 
RANDOMIZATION; CRYPTOCOMPLEXITY; CREDIT CARDS VALIDATION 

Classification Codes: 

723 (Computer Software) 

72 (COMPUTERS & DATA PROCESSING) 
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(c) 2004 Elsevier Eng. Info. Inc. All rts. reserv. 

02574348 E.I. Monthly No: EI8805042793 

Title: CRYPTOGRAPHICALLY SECURE PSEUDORANDOM SEQUENCE GENERATOR BASED ON 
RECIPROCAL NUMBER CRYPTOSYSTEM. 

Author: Kurosawa, K. ; Matsu, K. 

Corporate Source: Tokyo Inst of Technology, Yokohama, Jpn 

Source: Electronics Letters v 24 n 1 Jan 7 1988 p 16-17 

Publication Year: 1988 

CODEN: ELLEAK ISSN: 0013-5194 

Language: English 

Document Type: JA; (Journal Article) Treatment: T; (Theoretical) 
Journal Announcement: 8805 

Abstract: The letter presents a cryptographically secure pseudorandom 
sequence generator where two prime numbers are arbitrary, based on the 
public key cryptosystem proposed by one of the authors. (Author 
abstract) 3 refs. 

Descriptors: ^CRYPTOGRAPHY — * Reliability; DATA PROCESSING — Security of 
Data; INFORMATION THEORY 

Identifiers: PSEUDORANDOM SEQUENCE -GENERATOR; RECIPROCAL - NUMBER; PRIME 
NUMBERS; PUBLIC KEY CRYPTOSYSTEM; CRYPTOGRAPHIC SECURITY 

Classification Codes: 

723 (Computer Software); 716 (Radar, Radio & TV Electronic Equipment); 
717 (Electro-Optical Communications); 718 (Telephone & Line 
Communications ) 

72 (COMPUTERS & DATA PROCESSING); 71 (ELECTRONICS & COMMUNICATIONS) 
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DIALOG ( R) File 8 : Ei Compendex ( R) 

(c) 2004 Elsevier Eng. Info. Inc. All rts . reserv. 

01138284 E.I. Monthly No: EI8208066354 E.I. Yearly No: EI82016402 
Title: ON THE SECURITY OF MULTIPLE ENCRYPTION. 

Author: Merkle, Ralph C; Hellman, Martin E. 
Corporate Source: Stanford Univ, Calif, USA 

Source: Communications of the ACM v 24 n 7 Jul 1981 p 465-467 

Publication Year: 1981 

CODEN: CACMA2 ISSN: 0001-0782 

Language: ENGLISH 

Journal Announcement: 8208 

Abstract: Double encryption has been suggested to strengthen the Federal 
Data Encryption Standard (DES) . A recent proposal suggests that using two 
56-bit keys but enciphering 3 times (encrypt with a first key, decrypt with 
a second key , then encrypt with the first key again) increases 
security , over simple double^ encryption. It. is shown .that although either 
technique significantly improves security over single encryption, the new 
technique- does not significantly increase security over simple double 
encryption. Cryptanalysis of the 112-bit key requires about 2**5**6 
operations and words of memory, using a chosen plaintext attack. While DES 
is used as an example, the technique is applicable to any similar cipher. 
13 refs. 

Descriptors : *CODES, SYMBOLIC — *Encoding 

Identifiers: CRYPTOGRAPHY 

Classification Codes: 

723 (Computer Software) 

72 (COMPUTERS & DATA PROCESSING) 
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DIALOG (R) File 8 : Ei Compendex (R) 

(c) 2004 Elsevier Eng. Info. Inc. All rts. reserv. 

00914770 E.I. Monthly No: EI8004027823 E.I. Yearly No: EI80015389 

Title: UNIDIRECTIONAL CRYPTOGRAPHIC FUNCTIONS USING MASTER KEY VARIANTS. 

Author:. Lennon, R. E. ; Matyas, S . M. , 
Corporate Source: IBM, Kingston, NY 

Source: NTC Conf Rec Natl Telecommun Conf Washington, DC, Nov 27-29 1979. 
Publ by IEEE (Cat n 79CH1514-9) , New York, NY 1979 v 3 p 43. 4. 1-43. 4. 5 
Publication Year: 1979 
CODEN: NTC CAM 
Language : ENGLISH 
Journal Announcement: 8004 

Abstract: All cryptographic data systems require two basic operations — 
encryption and decryption — one being the inverse of the other. Effective 
key management operations which transform a key from " encipherment under 
one key to encipherment under another key , " using encryption and 
decryption operations, can negate the inverse properties of the two 
operations. There are two practical methods of implementing such a 
noninversion or unidirectional approach. One is to use different master 
keys for each transformation; another is to derive different keys from a 
single master key. An in depth analysis of the latter, more efficient 
approach is discussed. 6 refs. 

Descriptors: ^COMPUTER NETWORKS; COMPUTERS — Data Communication Systems 

Identifiers: CRYPTOGRAPHY 

Classification Codes: . , 

723 (Computer Software) 

72 (COMPUTERS & DATA PROCESSING) 
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7179684 INSPEC Abstract Number: B2002-03-6120D-026, C2002-03-6130S-033 
Title: Security tolerance and performance analysis of multi-keys KDC 

Author (s): Zhang Xianggang; Liu Jinde 

Author Affiliation: Coll. of Comput. Sci. & Eng., Univ. of Electron. Sci. 
& Technol. of China, Chengdu, China 

Journal: Journal of University of Electronic Science and Technology of 
China vol.30, no . 6 p. 596-9 

Publisher: Editorial Department of J. of UEST of China, 

Publication Date: Dec. 2001 Country of Publication: China 

CODEN: DKDAEM ISSN: 1001-0548 

SICI: 1001-054 8 ( 200112 ) 30 : 6L . 596 : STPA; 1-Q 

Material Identity Number: H166-2002-001 

Language: Chinese Document Type: Journal Paper (JP) 

Treatment: Practical (P); Theoretical (T) 

Abstract: The keys management between users and the KDC (key distribution 
center) is changed to improve the security tolerance of the system and to 
alleviate the danger of a leaking key. Two methods are applied. In the 
first , different key encryption keys are applied between users and 
different" KDC units, while, * iri" the second* / "many* key encrypting keys 
are applied for a data key before data communication to obtain the 
different parts of the data key. Results of a performance analysis are 
presented. (6 Refs) 
Subfile: B C 

Descriptors: public key cryptography; security of data 
Identifiers: multi-keys KDC; security tolerance; performance analysis; 

keys management; key distribution center; encryption keys; data 

communication 

Class Codes: B6120D (Cryptography); C6130S (Data security); C1260C ( 
Cryptography theory) 
Copyright 2002, IEE 
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DIALOG (R) File 2 : INSPEC 

(c) 2004 Institution of Electrical Engineers. All rts . reserv. 

7141015 INSPEC Abstract Number: B2002-02-1265F-021, C2002-02-5130-013 
Title: Universal controller ties fate to emulation 

Author (s) : Morrison, D. * " v 

Author Affiliation: SoC designs, Livingston, UK 

Journal: Integrated System Design vol.14, no. 149 p. 28-34- 
Publisher: CMP Media Inc, 

Publication Date: Nov. 2001 Country of Publication: USA 

CODEN: ISDNCY ISSN: 1080-2797 

SICI : 1080-27 97 (200111 ) 14 : 14 9L . 28 : UCTF; 1-Z 

Material Identity Number: F443-2001-014 

Language: English Document Type: Journal Paper (JP) 

Treatment: Practical (P) 

Abstract: System-on-chip (SoC) design service providers are under growing 
pressure to maximize flexibility in their designs and services. With the 
increased flexibility comes the need for more careful verification of the 
complete system. And emulation becomes central to verification. Clearly, 
when it comes to discussing SoC design, functional verification is one of 
the most highly charged subjects, and the Programmable Universal Controller 
device is no different. The SoC was aimed at the portable consumer 
appliances market, targeting such things as MP3 players and mobile phones. 
We spent a lot of time on feasibility studies trying to optimize 
requirements. A structured, well-planned functional verification approach 
accounted for 40 percent of the projects bverall "budget. *As a result, the 
customer could process MP3 music on the device within a week of Tality's 
delivering initial samples. The device had several key requirements. First, 
as its name suggests, the Programmable Universal Controller had to be 
flexible to ensure it supported as many portable applications as possible. 
In addition, with the device targeted at portable applications, power 
consumption was a key consideration. This resulted in the implementation of 
several power-management modes and a powerful and extremely complex 



clocking scheme. As wil^Pnnany such devices, data security is another 

key consideration and as a result, a great deal of time was spent to 
ensure that' data stored in " the 'embedded" memory 'would be carefully' 
partitioned and protected. 
Subfile: B C 

Descriptors : microcontrollers ; programmable controllers 

Identifiers: universal controller; emulation; functional verification; 
MP3 music; power consumption; data security; system-on-chip design 

Class Codes: B1265F (Microprocessors and microcomputers); C5130 ( 
Microprocessor chips); C3220B (Programmable controllers) 

Copyright 2002, IEE 
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(c) 2004 Institution of Electrical Engineers. All rts . reserv. 

5410604 INSPEC Abstract Number: B9612-6120B-038 , C9612-6130S-019 
Title: Prime-number algorithm for public-key systems 

Author(s): Kudin, A.M. 

Journal: Kibernetika i Sistemnyi Analiz vol.31, no. 6 p. 112-20 
Publisher: Plenum, 

Publication Date: Nov. -Dec. IB95 Country* of Publication: 'Ukraine 
Material Identity Number: P784-96004 

Translated in: Cybernetics and Systems Analysis vol.31, no. 6 p. 878-85 
Publication Date: Nov. -Dec. 1995 Country of Publication: USA 
CODEN: CYASEC ISSN: 1060-0396 

SICI of Translation: 1060-0396 ( 199511/12 ) 31 : 6L . 878 : PNAP; 1-Q 
U.S. Copyright Clearance Center Code: 1060-0396/95/3106-0878$12 . 50 
Language: English Document Type: Journal Paper (JP) 
Treatment: Practical (P) ; Theoretical (T) 

Abstract: We distinguish three distinct periods in the history of 
cryptography: until 1949, from 1949 to 1978, and since 1978 to the present. 
The beginning of the second period is marked by Shannon's paper "Theory of 
Communication in Secret Systems", presented at a closed seminar on 
communication theory in 1949. The "public key distribution" principle 
developed by Diffy and Hellnan in 1978 is usually viewed as marking the 
beginning of a new period in the history of cryptography, the period of 
cryptography with public (asymmetric) keys. Unlike the traditional 
symmetric encryption algorithms, in which the encrypting and decrypting 
keys are the same or can be easily obtained from one another , public- key 
encryption algorithms use different keys to encrypt and decrypt. These 
algorithms are" therefore also known "as asymmetric "encryption algorithms." 
Full recognition of the advantages of public-key cryptosystems is evident 
in the publication of new international standards using asymmetric 
encryption algorithms. The RSA encryption algorithm is now a de facto 
standard for commercial software, and the USA National Institute of 
Standards and Technology has developed a draft Federal digital signature 
standard, which is based on El Gamal ' s encryption algorithm. The 
publication of standards has become possible despite the absence of a 
theoretical estimate of cryptosystem security. This is understandable, 
because such estimates are not available for the popular symmetric 
encryption algorithms either. (39 Refs) 

Subfile: B C 

Descriptors: computational complexity; public key cryptography 
Identifiers: prime-number algorithm; public-key systems; cryptography; 

public-key encryption algorithms; international standards; cryptosystem 

security 

Class Codes: B6120B (Codes); C6130S (Data security); C4240C ( 
Computational complexity) 
Copyright 1996, IEE 
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5408529 INSPEC Abstract ^^nber : C9612-5620W-020 
Title: Role of " security technologies on the Internet • 

Author (s): Fujita, T. ; Miyauchi, H.; Sako, K.; Masumoto, H.; Miyano, H. ; 
Nakamura, K. 

Journal: NEC Technical Journal vol.49, no. 7 p. 276-81 
Publisher: NEC, 

Publication Date: July 1996 Country of Publication: Japan 

CODEN: NECGEZ ISSN: 0285-4139 

SICI: 0285-4139 (199607) 49: 7L. 27 6: RSTI; 1-0 

Material Identity Number: H719-96011 

Language: Japanese Document Type: Journal Paper (JP) 
Treatment: Practical (P) 

Abstract: This paper discusses some Internet security issues. At first, 
the NEC original private - key encryption algorithm ENCRiP is 

described, as well as the digital signature system IDSSS and key 
distribution system IDKDS. Then, the security middleware SIGURD is 
introduced together with its application to secure electronic mail and EDI 
systems. Finally, electronic voting is also introduced to clarify the 
importance of privacy enhanced systems on the Internet. (9 Refs) 

Subfile: C 

Descriptors: cryptography; Internet; security of data 

Identifiers: Internet security issues*; private' ^ key encryption;- ENCRiP- 
; digital signature system; key distribution system; IDSSS; IDKDS; security 
middleware; SIGURD; secure electronic mail; EDI; electronic voting 

Class Codes: C5620W (Other computer networks); C6130S (Data security) 

Copyright 1996, I EE 
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DIALOG (R) File 2 : INSPEC 

(c) 2004 Institution of . Electrical Engineers. All rts . reserv. 

04309957 INSPEC Abstract Number: B9302-6150M-002 , C9302-6130S-006 

Title: Key management systems combining X9.17 and public key 
techniques 

Author (s) : Graff, J. 

Author Affiliation: Cylink, Sunnyvale, CA, USA 

Conference Title: 13th National Computer Security Conference. 
Proceedings. Information Systems Security. Standards - the Key to the 
Future p. 49-61 vol.1 

Publisher: NIST, Gaithersburg, MD, USA 

Publication Date: 1990 Country of • Publication USA ■ 2-vol. xi+839-pp. • 
Conference Sponsor: NIST 

Conference Date: 1-4 Oct. 1990 Conference Location: Washington, DC, 
USA 

Language: English Document Type: Conference Paper (PA) 
Treatment : Practical (P) 

Abstract: The paper describes a key management protocol that combines 
public key techniques with the symmetrical key techniques. The key 

management protocol standard for wholesale financial institutions, X9.17, 
serves as a basis for the proposed protocol. X9.17 uses manually delivered 
symmetric key encrypting keys to initially exchange keys. Subsequently, 
encryption keys, while encrypted under key encrypting keys, can be 
electronically transferred. The Cylink CIDEC-LS link encryptor's key 
management system serves as a basis for a practical, initial model of 
incorporating public key techniques as a supplement to X9.17. The 

protocol permits the establishment of initial key encrypting keys 
using the Dif f ie-Hellman public key algorithm. The paper then 

discusses the further enhancements to achieve a key management system 
suitable for a dynamic network such as a local area network (LAN) . A 
recently proposed companion standard to X9.17 and a suggested method for 
key management * to IEEE 802 .10 SILS, have been • developed from the concepts- 
presented. Additionally, the paper discusses the various properties of the 
available public key algorithms. (11 Refs) 
Subfile: B C 

Descriptors: protocols; public key cryptography 

Identifiers: X9.17; public key techniques; key management protocol; 



symmetrical key techniquesf^rholesale financial institution^ symmetric key 
encrypting keys; Cylink CIDEC-LS link; Dif f ie-Hellman public key 
algorithm; dynamic network; local area network; IEEE 802.10; SILS 

Class Codes: B6150M (Protocols); B6120B (Codes); C6130S (Data security); 
C5640 (Protocols) 
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DIALOG (R) File 2 : INSPEC 

(c) 2004 Institution of Electrical Engineers. All rts . reserv. 

03071718 INSPEC Abstract Number: B88015281, D88000730 
Title: Key telephone systems: hybrid units add PB X-like features 

Author(s): Axner, D.H. 

Author Affiliation: Management Information Corp., Cherry Hill, NJ, USA 
Journal: Telecommunication Products Plus Technology vol.5, no. 11 p. 
56-8, 60, 62, 64 

Publication Date: Nov. 1987 'Country "of ' Publication : 'USA' ' 
CODEN: TPPTEA ISSN: 0746-6072 

Language: English Document Type: Journal Paper (JP) 
Treatment: Practical (P) 

Abstract: Modern key systems distribute processing power throughout the 
telephone network, and use switching matrices to interconnect stations and 
lines. The growing trend in technology is away from space-division 
switching-an older analog technique-to more useful digital switching using 
TDM (time-division multiplexing) and PAM- or PCM- encoded signals. 

Another key facet of modern key system technology is the ability to 

program the features and restrictions on multi-button keysets, providing 
even greater operating flexibility for users. They can configure an entire 
system, restricting features and access to long-distance lines on some, 
telephones and providing expanding features with unlimited toll access on 
others. The growing trend in the industry is toward programmable buttons 
('soft keys') on telephone keysets that can be assigned added lines ('line 
appearances') and/or other features. (0 Refs) 
Subfile: B D 

Descriptors: electronic switching systems; private telephone exchanges 
Identifiers: PBX; hybrid units; distributed processing; key telephone 

systems; 'switching mat rices ;* digital ' switching; " tlrfte- division multiplexing;' 

multi-button keysets; programmable buttons; soft keys; line appearances 
Class Codes: B6210D (Telephony); B6230B (Electronic telephone exchanges); 

D4070 (Telephone systems) 
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DIALOG (R) File 2 : INSPEC 

(c) 2004 Institution of Electrical Engineers. All rts. reserv. 

02980328 INSPEC Abstract Number: C87056740 
Title: How to evaluate microcomputer encryption software and hardware 

Author(s): Highland, H.J. 

Author Affiliation: CompuLit Inc., Elmont, NY, USA 
Journal: Computers & Security vol.6, no. 3 p. 229-44 
Publication Date: June 1987 Country of Publication: Netherlands 
CODEN: CPSEDU ISSN: 0167-4048 

U.S. Copyright Clearance Center Code: 0167-404 8/ 87/$3 . 50 
Language: English Document Type: Journal Paper (JP) 
Treatment: Practical (P) 

Abstract: Most companies are" not equipped to make exhaustive comparisons' 
of the encryption software and hardware products available in the market 
today. It is often difficult to make a sensible choice because full 
information is not found in the product's promotional literature and there 
are no definitive guidelines available to assist the user in making a 
selection. This paper presents a number of factors to be evaluated prior to 
making a selection. The author starts with basic question to consider 
before a search begins. Then he discusses the need for a controlled 
environment in which to evaluate encryption products and what this 
environment should be. Then comes the evaluation of encryption features 



followed by encryption ^ffning and file size consideration . Additional 

attributes of encryption packages including key characteristics and 
file recovery are discussed. Finally test procedures are considered. (0 

Refs) 
Subfile: C 

Descriptors: cryptography; equipment selection (computers); microcomputer 
applications; software selection 

Identifiers: security of data; DES; encryption product evaluation; 
testing; checklists; microcomputer encryption software; guidelines; 
encryption features; encryption timing; file size; encryption packages; 
file recovery 

Class Codes: C0310H (Equipment and software evaluation methods); C6130 ( 
Data handling techniques) 
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01357734 INSPEC Abstract Number: B79026386, C79015784 

Title: Expand a keyboard matrix by adding isolation diodes to a key 
encoder 

Author(s): Buurma, G. ; Caseldine, J. 

Author Affiliation: Nat. Semiconductor, Santa Clara, CA, USA 
Journal: Electronic Design vol.26, no. 25 p. 120 
Publication Date: 6 Dec. 1978 Country of Publication: USA 
CODEN: ELODAW ISSN: 0013-4872 

Language: English Document Type: Journal Paper (JP) 
Treatment: Practical (P) 

Abstract: Add a second matrix of keys to an encoded keyboard matrix 
by using four isolation diodes and a NAND gate. The 74C922 CMOS key encoder 
scans, detects, debounces, encodes and latches the key positions in an 
array of single-pole, single-throw keys. (0 Refs) 

Subfile: B C 

Descriptors: field effect integrated circuits; integrated logic circuits; 
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UNIVERSAL DECIMAL CLASSIFICATION: 621.391.037.3 
LANGUAGE: Japanese COUNTRY OF PUBLICATION: Japan 

.DOCUMENT TYPE: Journal , „ . 

ARTICLE TYPE: Original paper 
MEDIA TYPE: Printed Publication 

ABSTRACT: Safer encryption algorithms and signature schemes have been 
actively resarched in recent years . Candidates for the advanced 
encryption standard (AES) , which use a key length exceeding 128 bits, 
and the elliptic curve cryptosystem are prominent in the fields of 
symmetric- key cryptography and public - key cryptography, 
respectively. Toshiba has developed original symmetric- key block 
ciphers that are safer than Data Encryption Standard (DES ) or 
triple-DES, as well as a fast algorithm for computing in the elliptic 
curve cryptosystem, and has applied these results to the development of 



a key recovery system^rn this system, an encrypted message is 
decryptable under agreement by approvers, even if the decryption key is 
lost at lawful nodes, (author abst.) 

DESCRIPTORS: computer security; cryptogram; public key cryptography; 
cryptography key; algorithm; safety analysis; ellipse; number theory; 
decoding; Galois field; operation (mathematics 
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JOURNAL NUMBER: G0475BAB ISSN NO: 0285-4139 

UNIVERSAL DECIMAL CLASSIFICATION: 681.3:654 681.3.02-759 

LANGUAGE : Japanese COUNTRY OF PUBLICATION: Japan 

DOCUMENT TYPE: Journal 

ARTICLE TYPE: Original paper 

MEDIA TYPE: Printed Publication 

ABSTRACT: This paper discusses some Internet security issues. At first, the 
NEC original private - key encryption algorithm ENCRiP is 
described, as well as the digital signature system IDSSS and key 
distribution system IDKDS. Then, the security middleware SIGURD is 
introduced together with its application to secure electronic mail and 
EDI systems! Finally, electronic ' voting' is also introduced to' clarify 
the importance of privacy enhanced systems on the Internet, (author 
abst . ) 
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00691891 93-41112 
To tap or not to tap 

Denning, Dorothy E 

Communications of the ACM v36n3 PP: 24-33 Mar 1993 
ISSN: 0001-0782' JRNL CODE: XcM" 
WORD COUNT: 6959 

...TEXT: and services such as ISDN (Integrated Services digital Network), 
fiber optic transmissions, and the increasing number of mobile 

telecommunication networks and architectures. Although it is technically 
feasible to intercept digital communications, not all systems have been. . . 
the trustee. For example, two trustees could be used, and the keys could be 
stored with the first trustee encrypted under a key known only to the 
second. Alternatively, using Silvio Micali ! s "fair public - key 

cryptography," each user's private key could be split into, say, five 
pieces, and each piece given to a different trustee 4!. The... 



32/3, K/2 (Item 1 from file: 810) 

DIALOG (R) File 810: Business Wire 

(c) 1999 Business Wire . All rts. reserv. 

0614457 BW0258 

Business Wire Recap 

August 14, 1996 
Byline: Editors 

...Solutions Limited appoints three new vice presidents; 
worldwide sales &. marketing activities increase for (BW1040 08:00) 

(WESTERN- WIRELESS ) (WWCA) ISSAQUAH, Wash . --Western Wireless 
continues its rapid growth with launch of Portland, Oregon, PCS 
System; Newest market represents company's f ourth ... Rochester , New York; 
Telecasts New York v. Ortiz Live (BW1193 10:56) 

(FIRST-DATA) (FDC) OMAHA, Neb.-- First Data Partners with National 
City to Provide Processing and Information Management Services 
(BW0067 10:57) 

(EXECUTONE) (XTON) MILFORD, Conn... 
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Surfing the yellow pages, (interactive on-line telephone books) (Industry 
Trend or Event) 

Mehta, Suketu 

LAN Magazine, vll, n6, p77(7) 
June, 1996 

ISSN: 1069-5621 LANGUAGE: English RECORD TYPE: Fulltext; Abstract 

WORD COUNT: 5844 LINE COUNT: 00470 

...ABSTRACT: in its infancy. However, advertising on the Internet promises 
to eventually edge out printed directories as the primary source of 
information , particularly for users considering major purchases. 
Electronic directories offer greater scope and depth of information and the 
information . . . 

... well into the foreseeable future. In recent history, a new medium 

rarely pushes out another medium entirely: Radio did not do away with 
newspapers, television did not do away with radio , and electronic on-line 



services will not precludel^feiper-based directories. The challenge, then, is 
to develop. . .limited by the Internet. It's unlikely, but the Internet could 
turn out to be the CB radio of the 1990s. 
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These are the headlines and first paragraphs of each story, in order: . 

Newsbytes, pNEW01220033 
Jan 22, 1996 

LANGUAGE: English RECORD TYPE: Fulltext 

WORD COUNT: 1264 LINE COUNT: 00128 

TEXT: 

...5-Inch Disk Drive — Fisher International Systems of Naples, 
Florida, has introduced Crypto SmartDisk, calling it the " first public 
key encryption technology on a standard 3.5-inch disk.' 1 The new 
technology allows any user with a standard. . . 
. . . mail the company. 

10) Netherlands - GSM Take-Up Exceeds Expectations — Libertel, the 
second GSM (global system for mobile communications) digital phone 
network in the Netherlands, has revealed that it has signed more than 
27, 000 subscribers up in ... president and chief executive officer, has 
resigned. However, in the meantime, the company has rolled out new radio 
frequency identification products. 

29) Compton's Has No Comment On Shutdown — Neither Soft key 
International nor Compton f s... 
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Dorothy E. Denning. (To Tap or Not to Tap) 

Denning, Dorothy E. 

Communications of the ACM, v36, n3, p26(8) 
March, 1993 

ISSN: 0001-0782 LANGUAGE: ENGLISH RECORD TYPE: FULLTEXT; ABSTRACT 

WORD COUNT: 7105 LINE COUNT: 00589 

... and services such as ISDN (Integrated Services Digital Network), 

fiber optic transmissions, and the increasing number of mobile 
telecommunication networks and architectures. Although it is technically 
feasible 'to intercept digital communications, 'not' all systems have been.. - , 
the trustee. For example, two trustees could be used, and the keys could be 
stored with the first trustee encrypted under a key known only to the 
second. Alternatively, using Silvio Micali f s "fair public - key 
cryptography," each user's private key could be split into, say, five 
pieces, and each piece given to a different trustee [4]. The... 



